Moritz Muehlenhoff
2005-Sep-14 22:36 UTC
[Secure-testing-commits] r1989 - in data: CAN DSA
Author: jmm-guest
Date: 2005-09-14 22:35:59 +0000 (Wed, 14 Sep 2005)
New Revision: 1989
Modified:
data/CAN/list
data/DSA/list
Log:
libpam-ldap-tls referral (CAN-2005-2069) already fixed
with the libpam-ldap DSA (w/o mentioning in the advisory,
though)
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-09-14 21:37:08 UTC (rev 1988)
+++ data/CAN/list 2005-09-14 22:35:59 UTC (rev 1989)
@@ -3090,7 +3090,7 @@
CAN-2005-2069 (pam_ldap and nss_ldap, when used with OpenLDAP and connecting to
a ...)
- openldap2.2 2.2.26-3 (medium)
- openldap2 2.1.30-11 (medium)
- - libpam-ldap (unfixed; bug #316972; medium)
+ - libpam-ldap 178-1sarge1 (bug #316972; medium)
- libnss-ldap (unfixed; bug #316973; medium)
CAN-2005-2068 (FreeBSD 4.x through 4.11 and 5.x through 5.4 allows remote
attackers ...)
- kfreebsd-source (unfixed)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-09-14 21:37:08 UTC (rev 1988)
+++ data/DSA/list 2005-09-14 22:35:59 UTC (rev 1989)
@@ -113,7 +113,7 @@
- simpleproxy 3.2-4 (medium)
NOTE: not fixed in testing at time of DSA (embargoed disclosure)
[25 Aug 2005] DSA-785-1 libpam-ldap - authentication bypass
- {CAN-2005-2641}
+ {CAN-2005-2641 CAN-2005-2069}
- libpam-ldap 178-1sarge1 (medium)
NOTE: not fixed in testing at time of DSA (embargoed disclosure)
[25 Aug 2005] DSA-784-1 courier - programming error