Author: fw Date: 2005-09-16 12:06:46 +0000 (Fri, 16 Sep 2005) New Revision: 2019 Modified: data/CAN/list Log: CAN-2005-2877: twiki issue, not in testing, already patched CAN-2003-0721, CAN-2003-0720: remove annotation for binary package pine-tracker, implied by source package pine. Modified: data/CAN/list ==================================================================--- data/CAN/list 2005-09-16 11:10:06 UTC (rev 2018) +++ data/CAN/list 2005-09-16 12:06:46 UTC (rev 2019) @@ -1,8 +1,9 @@ CAN-2005-XXXX [Two local kernel DoS through incorrect ioctl refcounter handling] TODO: Pinged Horms for 2.4 - linux-2.6 (unfixed; medium) -CAN-2005-2877 - NOTE: reserved +CAN-2005-2877 [Shell command injection in twiki via rev arguments] + NOTE: proactively fixed by the robustness patch + - twiki 20040902-2 CAN-2005-2876 (umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2 allows ...) - util-linux (unfixed; bug #328141; medium) CAN-2005-2875 (Py2Play allows remote attackers to execute arbitrary Python code via ...) @@ -14332,10 +14333,8 @@ NOTE: not-for-us (solaris) CAN-2003-0721 (Integer signedness error in rfc2231_get_param from strings.c in PINE ...) - pine 4.58 - - pine-tracker 4.58 CAN-2003-0720 (Buffer overflow in PINE before 4.58 allows remote attackers to execute ...) - pine 4.58 - - pine-tracker 4.58 CAN-2003-0719 (Buffer overflow in the Private Communications Transport (PCT) protocol ...) NOTE: not-for-us (microsoft) CAN-2003-0718 (The WebDAV Message Handler for Internet Information Services (IIS) ...)