Author: fw
Date: 2005-09-24 14:24:19 +0000 (Sat, 24 Sep 2005)
New Revision: 2154
Modified:
data/CAN/list
data/DSA/list
Log:
Correct some minor syntax problems, mostly with <unfixed>.
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-09-24 13:37:45 UTC (rev 2153)
+++ data/CAN/list 2005-09-24 14:24:19 UTC (rev 2154)
@@ -423,7 +423,7 @@
CAN-2005-2855 (Cross-site scripting (XSS) vulnerability in Unclassified
NewsBoard ...)
NOT-FOR-US: Unclassified Newsboard
CAN-2005-2854 (CRLF injection vulnerability in thesitewizard.com chfeedback.pl
...)
- NOT-FOR-US:
+ NOT-FOR-US: thesitewizard.com chfeedback.pl
CAN-2005-2853 (Multiple cross-site scripting (XSS) vulnerabilities in GuppY
4.5.3a ...)
NOT-FOR-US: GuppY
CAN-2005-2852 (Unknown vulnerability in CIFS.NLM in Novell Netware 6.5 SP2 and
SP3, ...)
@@ -3486,7 +3486,7 @@
- libpam-ldap 178-1sarge1 (bug #316972; medium)
- libnss-ldap 238-1.1 (bug #316973; medium)
CAN-2005-2068 (FreeBSD 4.x through 4.11 and 5.x through 5.4 allows remote
attackers ...)
- - kfreebsd-source (unfixed)
+ - kfreebsd-source <unfixed>
CAN-2005-2067 (SQL injection vulnerability in article.asp in unknown versions
of ...)
NOT-FOR-US: ASP Nuke
CAN-2005-2066 (SQL injection vulnerability in comment_post.asp in ASP Nuke 0.80
...)
@@ -3910,7 +3910,7 @@
CAN-2002-1795 (Cross-site scripting (XSS) vulnerability in connect.asp in
Microsoft ...)
NOT-FOR-US: Microsoft
CAN-2002-1794 (Unknown vulnerability in pam_authz in the LDAP-UX Integration
product ...)
- NOTE: not-fur us (HP ldapux-pamauthz)
+ NOT-FOR-US: HP ldapux-pamauthz
CAN-2002-1793 (HTTP Server mod_ssl module running on HP-UX 11.04 with
Virtualvault OS ...)
NOT-FOR-US: HP Virtualvault OS
CAN-2002-1792 (Buffer overflow in Fake Identd 0.9 through 1.4 allows remote
attackers ...)
@@ -4860,7 +4860,7 @@
NOTE: linux-2.6 not affected (already fixed)
- kernel-source-2.4.27 2.4.27-11 (unknown)
CAN-2005-1766 (Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5
...)
- - helix-player 1.0.5 <unfixed> (bug #316276; high)
+ - helix-player <unfixed> (bug #316276; high)
NOTE: Helix Player is affected according to:
NOTE: <http://service.real.com/help/faq/security/050623_player/EN/>
CAN-2005-1765 (syscall in the Linux kernel 2.6.8.1 and 2.6.10 for the AMD64
platform, ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-09-24 13:37:45 UTC (rev 2153)
+++ data/DSA/list 2005-09-24 14:24:19 UTC (rev 2154)
@@ -401,7 +401,7 @@
NOTE: fixed in testing at time of DSA
[20 May 2005] DSA-726-1 oops - format string vulnerability
{CAN-2005-1121}
- - oops (unfixed; bug #307360; high)
+ - oops <unfixed> (bug #307360; high)
NOTE: not in testing at time of DSA
[19 May 2005] DSA-725-1 ppxp - missing privilege release
{CAN-2005-0392}