[Secure-testing-commits] r2286 - data/CAN

Moritz Muehlenhoff Mon, 03 Oct 2005 08:04:59 -0700

Author: jmm-guest
Date: 2005-10-03 15:04:31 +0000 (Mon, 03 Oct 2005)
New Revision: 2286


Modified:
   data/CAN/list
Log:
four more issues from the BTS


Modified: data/CAN/list
===================================================================
--- data/CAN/list       2005-10-03 11:00:32 UTC (rev 2285)
+++ data/CAN/list       2005-10-03 15:04:31 UTC (rev 2286)
@@ -1,3 +1,12 @@
+CAN-2005-XXXX [Insecure bounds checking in mpack's content parser]
+       - mpack 1.6-1 (bug #216566)
+CAN-2005-XXXX [coreutils ignore umask when using -m in mkdir, mkfifo and mknod]
+       - coreutils <unfixed> (bug #306076; low)
+CAN-2005-XXXX [gossip names windows potentially confusing, which might lead to 
inform. disclosure]
+       - gossip <unfixed> (bug #305419; low)
+       NOTE: This looks quite strange, should be followed up, whether it's 
really reproducible
+CAN-2005-XXXX [tar's rmt command may have undesired side effects]
+       - tar <unfixed> (bug #290435; low)
 CAN-2005-XXXX [Unspecified vulnerability in htdig's htsearch and qtest]
        - htdig <unfixed> (bug #305996; unknown)
 CAN-2005-XXXX [clamav's VERSION command does not return the currently loaded 
version]


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r2286 - data/CAN

Reply via email to