/[secure-testing]/data/DSA/list
ViewVC logotype

Contents of /data/DSA/list

Parent Directory Parent Directory | Revision Log Revision Log

Revision 1355 - (show annotations) (download)
Sat Jul 9 13:13:35 2005 UTC (7 years, 10 months ago) by joeyh
File size: 73216 byte(s) 
- base-config issue fixed in svn
- gzip bug affects aide
1 [08 Jul 2005] DSA-744-1 fuse - programming error
2 {CAN-2005-1858}
3 - fuse 2.3.0-1
4 NOTE: fixed in testing at time of DSA
5 [08 Jul 2005] DSA-743-1 ht - buffer overflows, integer overflows
6 {CAN-2005-1545 CAN-2005-1546}
7 - ht 0.8.0-3
8 NOTE: fixed in testing at time of DSA
9 [09 Jul 2005] DSA-742-1 cvs - buffer overflow
10 {CAN-2005-0753}
11 - cvs 1:1.12.9-13 (high)
12 NOTE: fixed in testing at time of DSA
13 [07 Jul 2005] DSA-741-1 bzip2 - infinite loop
14 {CAN-2005-1260}
15 - bzip2 1.0.2-7 (low)
16 NOTE: fixed in testing at time of DSA
17 [06 Jul 2005] DSA-740-1 zlib - buffer overflow
18 {CAN-2005-2096}
19 - zlib 1.2.2-7 (medium)
20 NOTE: anything statically linking zlib needs rebuild
21 TODO: check rest/coord with Kurt Roeckx
22 - aide (unfixed; bug #317523; medium)
23 NOTE: not fixed in testing at time of DSA (embargoed disclosure)
24 [06 Jul 2005] DSA-739-1 trac - missing input sanitising
25 {CAN-2005-2007}
26 - trac 0.8.4-1 (medium)
27 NOTE: fixed in testing at time of DSA
28 [19 May 2005] DSA-725-2 ppxp - missing privilege release
29 {CAN-2005-0392}
30 - ppxp 0.2001080415-11
31 NOTE: fixed in testing at time of DSA
32 [05 Jul 2005] DSA-738-1 razor - email header parsing error
33 {CAN-2005-2024}
34 - razor 2.720-1 (low)
35 NOTE: not fixed in testing at time of DSA (not built on arm)
36 [05 Jul 2005] DSA-737-1 clamav - various DOS vulnerabilities
37 {CAN-2005-1922 CAN-2005-1923 CAN-2005-2056 CAN-2005-2070}
38 - clamav 0.86.1-1 (medium)
39 NOTE: not fixed in testing at time of DSA (uploaded with low urgency only, one fix missing for sid)
40 [05 Jul 2005] DSA-734-1 gaim - denial of service
41 {CAN-2005-1269 CAN-2005-1934}
42 - gaim 1.3.1-1
43 NOTE: not fixed in testing at time of DSA (not built on sparc)
44 [01 Jul 2005] DSA-736-2 spamassassin - mail header parsing error
45 {CAN-2005-1266}
46 - spamassassin 3.0.4-1 (medium)
47 NOTE: fixed in testing at time of DSA
48 [01 Jul 2005] DSA-736-1 spamassassin - mail header parsing error
49 {CAN-2005-1266}
50 - spamassassin 3.0.4-1 (medium)
51 NOTE: fixed in testing at time of DSA
52 [08 Jul 2005] DSA-735-2 sudo - pathname validation race
53 {CAN-2005-1993}
54 - sudo 1.6.8p9-1 (medium)
55 NOTE: fixed in testing at time of DSA
56 [01 Jul 2005] DSA-735-2 sudo - pathname validation race
57 {CAN-2005-1993}
58 - sudo 1.6.8p9-1 (medium)
59 NOTE: fixed in testing at time of DSA
60 [01 Jul 2005] DSA-735-1 sudo - pathname validation race
61 {CAN-2005-1993}
62 - sudo 1.6.8p9-1 (medium)
63 NOTE: not fixed in testing at time of DSA
64 [30 Jun 2005] DSA-733-1 crip - insecure temporary files
65 {CAN-2005-0393}
66 - crip 3.5-1sarge2 (low)
67 NOTE: not fixed in testing at time of DSA (reserved)
68 [03 Jun 2005] DSA-732-1 mailutils - several
69 {CAN-2005-1520 CAN-2005-1521 CAN-2005-1522 CAN-2005-1523}
70 - mailutils 0.6.1-4
71 NOTE: fixed in testing at time of DSA
72 [02 Jun 2005] DSA-731-1 krb4 - buffer overflows
73 {CAN-2005-0468 CAN-2005-0468}
74 - krb4 1.2.2-11.2
75 NOTE: fixed in testing at time of DSA
76 [27 May 2005] DSA-730-1 bzip2 - race condition
77 {CAN-2005-0953}
78 - bzip2 1.0.2-6
79 NOTE: fixed in testing at time of DSA
80 [26 May 2005] DSA-729-1 php4 - missing input sanitising
81 {CAN-2005-0525}
82 - php4 4.3.10-10
83 NOTE: fixed in testing at time of DSA
84 [25 May 2005] DSA-728-1 qpopper - missing privilege release
85 {CAN-2005-1151 CAN-2005-1152}
86 - qpopper 4.0.5-4sarge1
87 NOTE: fixed in testing at time of DSA by security team
88 [20 May 2005] DSA-727-1 libconvert-uulib-perl - buffer overflow
89 {CAN-2005-1349}
90 - libconvert-uulib-perl 1.0.5.1-1
91 NOTE: fixed in testing at time of DSA
92 [20 May 2005] DSA-726-1 oops - format string vulnerability
93 {CAN-2005-1121}
94 - oops (unfixed; bug #307360)
95 NOTE: not in testing at time of DSA
96 [19 May 2005] DSA-725-1 ppxp - missing privilege release
97 {CAN-2005-0392}
98 - ppxp 0.2001080415-11
99 NOTE: not fixed in testing at time of DSA
100 [18 May 2005] DSA-724-1 phpsysinfo - design flaw
101 {CAN-2005-0870}
102 - phpsysinfo 2.3-3
103 NOTE: fixed in testing at time of DSA
104 [09 May 2005] DSA-723-1 xfree86 - buffer overflow
105 {CAN-2005-0605}
106 - xfree86 4.3.0.dfsg.1-13
107 NOTE: not fixed in testing at time of DSA
108 [09 May 2005] DSA-722-1 smail - buffer overflow
109 {CAN-2005-0892}
110 NOTE: Package not in testing at time of DSA
111 [06 May 2005] DSA-721-1 squid - design flaw
112 {CAN-2005-1345}
113 - squid 2.5.9-7
114 NOTE: not fixed in testing at time of DSA
115 [03 May 2005] DSA-720-1 smartlist - wrong input processing
116 {CAN-2005-0157}
117 - smartlist 3.15-18
118 NOTE: fixed in testing at time of DSA
119 [28 Apr 2005] DSA-719-1 prozilla - format string problems
120 {CAN-2005-0523}
121 - prozilla 1:1.3.7.4-1
122 NOTE: fixed in testing at time of DSA
123 [28 Apr 2005] DSA-718-1 ethereal - buffer overflow
124 {CAN-2005-0739}
125 - ethereal 0.10.10-1
126 NOTE: fixed in testing at time of DSA
127 [27 Apr 2005] DSA-717-1 lsh-utils - buffer overflow, typo
128 {CAN-2003-0826 CAN-2005-0814}
129 - lsh-utils 2.0.1-2
130 NOTE: fixed in testing at time of DSA
131 [27 Apr 2005] DSA-716-1 gaim - denial of service
132 {CAN-2005-0472}
133 - gaim 1.1.3-1
134 NOTE: fixed in testing at time of DSA
135 [27 Apr 2005] DSA-715-1 cvs - several
136 {CAN-2004-1342 CAN-2004-1343}
137 - cvs 1.12.9-12
138 NOTE: not fixed in testing at time of DSA
139 [26 Apr 2005] DSA-714-1 kdelibs - several
140 {CAN-2005-1046}
141 - kdelibs 4:3.3.2-5
142 NOTE: not fixed in testing at time of DSA
143 [21 Apr 2005] DSA-701-2 samba - integer overflows
144 NOTE: only a bug in the backported fix to stable, testing is ok
145 [21 Apr 2005] DSA-713-1 junkbuster - several
146 {CAN-2005-1108 CAN-2005-1109}
147 NOTE: package not in testing/unstable
148 [19 Apr 2005] DSA-712-1 geneweb - insecure file operations
149 {CAN-2005-0391}
150 - geneweb 4.10-7
151 NOTE: fixed in testing at time of DSA
152 [19 Apr 2005] DSA-711-1 info2www - missing input sanitising
153 {CAN-2004-1341}
154 - info2www 1.2.2.9-23
155 NOTE: fixed in testing at time of DSA
156 [18 Apr 2005] DSA-710-1 gtkhtml - null pointer dereference
157 {CAN-2003-0541}
158 - gtkhtml 1.0.4-6.2
159 NOTE: fixed in testing at time of DSA
160 [15 Apr 2005] DSA-709-1 libexif - buffer overflow
161 {CAN-2005-0664}
162 - libexif 0.6.9-5
163 [15 Apr 2005] DSA-708-1 php3 - missing input sanitising
164 {CAN-2005-0525}
165 - php3 3.0.18-31
166 [13 Apr 2005] DSA-707-1 mysql - several
167 {CAN-2004-0957 CAN-2005-0709 CAN-2005-0710 CAN-2005-0711}
168 - mysql-dfsg 4.0.24-5
169 - mysql-dfsg-4.1 4.1.10a-6
170 NOTE: not fixed in testing at time of DSA
171 [13 Apr 2005] DSA-706-1 axel - buffer overflow
172 {CAN-2005-0390}
173 - axel 1.0b-1
174 NOTE: fixed in testing at time of DSA
175 [04 Apr 2005] DSA-705-1 wu-ftpd - missing input sanitising
176 {CAN-2005-0256 CAN-2003-0854}
177 - wu-ftpd 2.6.2-19
178 [04 Apr 2005] DSA-704-1 remstats - tempfile, missing input sanitising
179 {CAN-2005-0387 CAN-2005-0388}
180 - remstats 1.0.13a-5
181 NOTE: not fixed in testing at time of DSA
182 [01 Apr 2005] DSA-703-1 krb5 - buffer overflows
183 {CAN-2005-0468 CAN-2005-0469}
184 - krb5 1.3.6-1
185 [01 Apr 2005] DSA-702-1 imagemagick - several
186 {CAN-2005-0397 CAN-2005-0759 CAN-2005-0760 CAN-2005-0762}
187 - imagemagick 6.0.6.2-2.2
188 [31 Mar 2005] DSA-701-1 samba - integer overflows
189 {CAN-2004-1154}
190 - samba 3.0.10-1
191 [30 Mar 2005] DSA-700-1 mailreader - missing input sanitising
192 {CAN-2005-0386}
193 - mailreader 2.3.29-11
194 NOTE: not fixed in testing at time of DSA
195 [29 Mar 2005] DSA-699-1 netkit-telnet-ssl - buffer overflow
196 {CAN-2005-0469}
197 - netkit-telnet-ssl 0.17.24+0.1-7.1
198 NOTE: not fixed in testing at time of DSA
199 [29 Mar 2005] DSA-698-1 mc - buffer overflow
200 {CAN-2005-0763}
201 NOTE: Not clear which unstable/testing version fixed this,
202 NOTE: but advisory says it's fixed.
203 [29 Mar 2005] DSA-697-1 netkit-telnet - buffer overflow
204 {CAN-2005-0469}
205 - netkit-telnet 0.17-28
206 NOTE: not fixed in testing at time of DSA
207 [22 Mar 2005] DSA-696-1 perl - design flaw
208 {CAN-2005-0448}
209 - perl 5.8.4-8
210 NOTE: fixed in testing at time of DSA
211 [21 Mar 2005] DSA-695-1 xli - buffer overflow, input sanitising, integer overflow
212 {CAN-2001-0775 CAN-2005-0638 CAN-2005-0639}
213 - xli 1.17.0-18
214 NOTE: not fixed in testing at time of DSA
215 [21 Mar 2005] DSA-694-1 xloadimage - missing input sanitising, integer overflow
216 {CAN-2005-0638 CAN-2005-0639}
217 - xloadimage 4.1-14.2
218 NOTE: not fixed in testing at time of DSA
219 [14 Mar 2005] DSA-693-1 luxman - buffer overflow
220 {CAN-2005-0385}
221 NOTE: not fixed in testing at time of DSA
222 NOTE: not in unstable at time of DSA though DSA claimed it was
223 - luxman 0.41-20
224 [14 Mar 2005] DSA-662-2 squirrelmail - several
225 NOTE: only an update to a prior DSA, did not affct sid/sarge.
226 [08 Mar 2005] DSA-692-1 kppp - design flaw
227 {CAN-2005-0205}
228 - kppp 4:3.1.6
229 NOTE: fixed in testing at time of DSA
230 [07 Mar 2005] DSA-691-1 abuse - several
231 {CAN-2005-0098 CAN-2005-0099}
232 NOTE: not in unstable/testing
233 [25 Feb 2005] DSA-690-1 bsmtpd - missing input sanitising
234 {CAN-2005-0107}
235 - bsmtpd 2.3pl8b-16
236 NOTE: not fixed in testing at time of DSA
237 [23 Feb 2005] DSA-689-1 libapache-mod-python - missing input sanitising
238 {CAN-2005-0088}
239 - libapache-mod-python 2.7.10-4
240 NOTE: fixed in testing at time of DSA
241 - libapache2-mod-python 3.1.3-3
242 NOTE: fixed in testing at time of DSA
243 [23 Feb 2005] DSA-688-1 squid - mising input sanitising
244 {CAN-2005-0446}
245 - squid 2.5.8-3
246 NOTE: fixed in testing at time of DSA
247 [21 Feb 2005] DSA-674-3 mailman - cross-site scripting, directory traversal
248 NOTE: only fixed bug in DSA
249 [18 Feb 2005] DSA-687-1 bidwatcher - format string
250 {CAN-2005-0158}
251 - bidwatcher 1.3.17-1
252 NOTE: not fixed in testing at time of DSA
253 [17 Feb 2005] DSA-686-1 gftp - missing input sanitising
254 {CAN-2005-0372}
255 - gftp 2.0.18-1
256 NOTE: not fixed in testing at time of DSA
257 [17 Feb 2005] DSA-685-1 emacs21 - format string
258 {CAN-2005-0100}
259 - emacs21 21.3+1-9
260 NOTE: not fixed in testing at time of DSA
261 [16 Feb 2005] DSA-684-1 typespeed - format string
262 {CAN-2005-0105}
263 - typespeed 0.4.4-8
264 NOTE: not fixed in testing at time of DSA
265 [15 Feb 2005] DSA-683-1 postgresql - buffer overflows
266 {CAN-2005-0245 CAN-2005-0247}
267 - postgresql 7.4.7-2
268 NOTE: fixed in testing at time of DSA
269 [15 Feb 2005] DSA-682-1 awstats - missing input sanitising
270 {CAN-2005-0363}
271 - awstats 6.2-1.2
272 NOTE: not fixed in testing at time of DSA
273 [14 Feb 2005] DSA-681-1 synaesthesia - privilege escalation
274 {CAN-2005-0070}
275 NOTE: does not apply for sarge, program is not setuid anymore
276 [14 Feb 2005] DSA-680-1 htdig - unsanitised input
277 {CAN-2005-0085}
278 - htdig 3.1.6-11
279 NOTE: fixed in testing at time of DSA
280 [14 Feb 2005] DSA-679-1 toolchain-source - insecure temporary files
281 {CAN-2005-0159}
282 - toolchain-source 3.4-5
283 NOTE: not fixed in testing at time of DSA
284 [11 Feb 2005] DSA-678-1 netkit-rwho - missing input validation
285 {CAN-2004-1180}
286 - netkit-rwho 0.17-8
287 NOTE: not fixed in testing at time of DSA
288 [11 Feb 2005] DSA-677-1 sympa - buffer overflow
289 {CAN-2005-0073}
290 - sympa 4.1.2-2.1
291 NOTE: not fixed in testing at time of DSA
292 [11 Feb 2005] DSA-676-1 xpcd - buffer overflow
293 {CAN-2005-0074}
294 - xpcd 2.08-11.1
295 NOTE: not fixed in testing at time of DSA
296 [11 Feb 2005] DSA-674-2 mailman - cross-site scripting, directory traversal
297 NOTE: only fixed bug in DSA
298 [10 Feb 2005] DSA-675-1 hztty - privilege escalation
299 {CAN-2005-0019}
300 - hztty 2.0-6.1
301 NOTE: not fixed in testing at time of DSA
302 [10 Feb 2005] DSA-674-1 mailman - cross-site scripting, directory traversal
303 {CAN-2004-1177}
304 - mailman 2.1.5-5
305 NOTE: fixed in testing at time of DSA
306 {CAN-2005-0202}
307 - mailman 2.1.5-6
308 NOTE: not fixed in testing at time of DSA
309 [10 Feb 2005] DSA-673-1 evolution - integer overflow
310 {CAN-2005-0102}
311 - evolution 2.0.3-1.2
312 NOTE: fixed in testing at time of DSA
313 [09 Feb 2005] DSA-672-1 xview - buffer overflows
314 {CAN-2005-0076}
315 - xview 3.2p1.4-19
316 NOTE: not fixed in testing at time of DSA
317 [08 Feb 2005] DSA-671-1 xemacs21 - format string
318 {CAN-2005-0100}
319 NOTE: not fixed in testing at time of DSA
320 - xemacs21 21.4.16-2
321 [08 Feb 2005] DSA-670-1 emacs20 - format string
322 {CAN-2005-0100}
323 NOTE: also affects emacs21 in unstable, fixed
324 [04 Feb 2005] DSA-689-1 php3 - several
325 {CAN-2004-0594 CAN-2004-0595}
326 - php3 3.0.18-27
327 NOTE: fixed in testing at time of DSA
328 [04 Feb 2005] DSA-668-1 postgresql - privilege escalation
329 {CAN-2005-0227}
330 - postgresql 7.4.7-1
331 NOTE: not fixed in testing at time of DSA
332 [04 Feb 2005] DSA-667-1 squid - several
333 {CAN-2005-0173 CAN-2005-0175 CAN-2005-0194 CAN-2005-0211}
334 - squid 2.5.7-7
335 NOTE: not fixed in testing at time of DSA
336 [04 Feb 2005] DSA-666-1 python2.2 - design flaw
337 {CAN-2005-0089}
338 - python2.2 2.2.3-14
339 - python2.3 2.3.4-20
340 - python2.4 2.4-5
341 NOTE: not fixed in testing at time of DSA
342 [04 Feb 2005] DSA-665-1 ncpfs - missing privilege release
343 {CAN-2005-0013}
344 - ncpfs 2.2.6-1
345 NOTE: not fixed in testing at time of DSA
346 [02 Feb 2005] DSA-664-1 cpio - broken file permissions
347 {CAN-1999-1572}
348 - cpio 2.5-1.2
349 NOTE: not fixed in testing at time of DSA
350 [02 Feb 2005] DSA-663-1 prozilla - buffer overflows
351 {CAN-2004-1120}
352 - prozilla 1.3.7.3-1
353 NOTE: fixed in testing at time of DSA
354 [01 Feb 2005] DSA-662-1 squirrelmail - several
355 {CAN-2005-0104 CAN-2005-0152}
356 NOTE: CAN-2005-0152 only exists in 1.2.6 version
357 - squirrelmail 1.4.4
358 NOTE: fixed in testing at time of DSA
359 [20 Apr 2005] DSA-661-2 f2c - insecure temporary files
360 {CAN-2005-0017 CAN-2005-0018}
361 - f2c 20020621-3.3
362 NOTE: not fixed in testing at time of DSA
363 [26 Jan 2005] DSA-660-1 kdebase - missing return value check
364 {CAN-2005-0078}
365 - kdebase 4:3.0.5
366 NOTE: fixed in testing at time of DSA
367 [26 Jan 2005] DSA-659-1 libpam-radius-auth - information leak, integer underflow
368 {CAN-2004-1340 CAN-2005-0108}
369 - libpam-radius-auth 1.3.16-3
370 NOTE: 1/2 fixed in testing at time of DSA
371 [25 Jan 2005] DSA-658-1 libdbi-perl - insecure temporary file
372 {CAN-2005-0077}
373 - libdbi-perl 1.46-6
374 NOTE: not fixed in testing at time of DSA
375 [25 Jan 2005] DSA-657-1 xine-lib - buffer overflow
376 {CAN-2004-1379}
377 - xine-lib 1-rc6a-1
378 NOTE: fixed in testing at time of DSA
379 [25 Jan 2005] DSA-656-1 vdr - insecure file access
380 {CAN-2005-0071}
381 - vdr 1.2.6-6
382 NOTE: not fixed in testing at time of DSA
383 [25 Jan 2005] DSA-655-1 zhcon - missing privilege release
384 {CAN-2005-0072}
385 - zhcon 1:0.2.3-8.1
386 NOTE: not fixed in testing at time of DSA
387 [21 Jan 2005] DSA-654-1 enscript - several
388 {CAN-2004-1184 CAN-2004-1185 CAN-2004-1186}
389 - enscript 1.6.4-6
390 NOTE: not fixed in testing at time of DSA
391 [21 Jan 2005] DSA-653-1 ethereal - buffer overflow
392 {CAN-2005-0084}
393 - ethereal 0.10.9-1
394 NOTE: not fixed in testing at time of DSA
395 [21 Jan 2005] DSA-652-1 unarj
396 {CAN-2004-0947 CAN-2004-1027}
397 NOTE: not-for-us (unarj)
398 [20 Jan 2005] DSA-651-1 squid - buffer overflow, integer overflow
399 {CAN-2005-0094 CAN-2005-0095}
400 - squid 2.5.7-4
401 NOTE: not fixed in testing at time of DSA
402 [20 Jan 2005] DSA-650-1 sword - missing input sanitising
403 {CAN-2005-0015}
404 - sword 1.5.7-7
405 NOTE: not fixed in testing at time of DSA
406 [20 Jan 2005] DSA-649-1 xtrlock - buffer overflow
407 {CAN-2005-0079}
408 - xtrlock 2.0-9
409 NOTE: fixed in testing at time of DSA
410 [19 Jan 2005] DSA-648-1 xpdf - buffer overflow
411 {CAN-2005-0064}
412 - xpdf 3.00-12
413 NOTE: not fixed in testing at time of DSA
414 [19 Jan 2005] DSA-647-1 mysql - insecure temporary files
415 {CAN-2005-0004}
416 - mysql-dfsg 4.0.23-3
417 - mysql-dfsg-4.1 4.1.8a-6
418 NOTE: not fixed in testing at time of DSA
419 [19 Jan 2005] DSA-646-1 imagemagick - buffer overflow
420 {CAN-2005-0005}
421 - imagemagick 6.0.6.2-2
422 NOTE: not fixed in testing at time of DSA
423 [19 Jan 2005] DSA-645-1 cupsys - buffer overflow
424 {CAN-2005-0064}
425 NOTE: cupsys not affected in sarge, though other programs are vulnerable
426 NOTE: see CAN/list
427 NOTE: not fixed in testing at time of DSA
428 [18 Jan 2005] DSA-644-1 chbg - buffer overflow
429 {CAN-2004-1264}
430 - chbg 1.5-4
431 NOTE: fixed in testing at time of DSA
432 [18 Jan 2005] DSA-643-1 queue - buffer overflows
433 {CAN-2004-0555}
434 - queue 1.30.1-5
435 NOTE: not fixed in testing at time of DSA
436 [17 Jan 2005] DSA-642-1 gallery - several
437 {CAN-2004-1106}
438 - gallery 1.4.4-pl4-1
439 NOTE: fixed in testing at time of DSA
440 [17 Jan 2005] DSA-641-1 playmidi - buffer overflow
441 {CAN-2005-0020}
442 - playmidi 2.4debian-3
443 NOTE: not fixed in testing at time of DSA
444 [17 Jan 2005] DSA-640-1 gatos - buffer overflow
445 {CAN-2005-0016}
446 - gatos 0.0.5-15
447 NOTE: not fixed in testing at time of DSA
448 [14 Jan 2005] DSA-639-1 mc - several
449 {CAN-2004-1004 CAN-2004-1005 CAN-2004-1009 CAN-2004-1090 CAN-2004-1091 CAN-2004-1092 CAN-2004-1093 CAN-2004-1174 CAN-2004-1175 CAN-2004-1176}
450 NOTE: unstable not vulnerable according to DSA
451 NOTE: DSA was wrong..
452 - mc 1:4.6.0-4.6.1-pre3-1
453 NOTE: not fixed in testing at time of DSA
454 [13 Jan 2005] DSA-638-1 gopher - several
455 {CAN-2004-0560 CAN-2004-0561}
456 NOTE: not in sarge
457 [13 Jan 2005] DSA-637-1 exim-tls - buffer overflow
458 {CAN-2005-0021}
459 NOTE: not in sarge
460 [12 Jan 2005] DSA-636-1 glibc - insecure temporary files
461 {CAN-2004-0968}
462 - glibc 2.3.2.ds1-20
463 NOTE: fixed in testing at time of DSA
464 [12 Jan 2005] DSA-635-1 exim - buffer overflow
465 {CAN-2005-0021}
466 - exim4 4.34-10
467 NOTE: fixed in testing at time of DSA
468 - exim 3.36-13
469 NOTE: not fixed in testing at time of DSA
470 [11 Jan 2005] DSA-634-1 hylafax - weak hostname and username validation
471 {CAN-2004-1182}
472 - hylafax 4.2.1-1
473 NOTE: fixed in testing at time of DSA
474 [11 Jan 2005] DSA-633-1 bmv - insecure temporary file
475 {CAN-2003-0014}
476 - bmv 1.2-17
477 NOTE: fixed in testing at time of DSA
478 [10 Jan 2005] DSA-632-1 linpopup - buffer overflow
479 {CAN-2004-1282}
480 - linpopup 1.2.0-7
481 NOTE: fixed in testing at time of DSA
482 [10 Jan 2005] DSA-631-1 kdelibs - unsanitised input
483 {CAN-2004-1165}
484 - kdelibs 4:3.3.2-1
485 NOTE: not fixed in testing at time of DSA
486 [10 Jan 2005] DSA-630-1 lintian - insecure temporary directory
487 {CAN-2004-1000}
488 - lintian 1.23.6
489 NOTE: not fixed in testing at time of DSA
490 [07 Jan 2005] DSA-629-1 krb5 - buffer overflow
491 {CAN-2004-1189}
492 - krb5 1.3.6-1
493 NOTE: not fixed in testing at time of DSA
494 [06 Jan 2005] DSA-628-1 imlib2 - integer overflows
495 {CAN-2004-1026}
496 - imlib2 1.1.2-2.1
497 NOTE: not fixed in testing at time of DSA
498 [06 Jan 2005] DSA-627-1 namazu2 - unsanitised input
499 {CAN-2004-1318}
500 - namazu2 2.0.14-1
501 NOTE: not fixed in testing at time of DSA
502 [06 Jan 2005] DSA-626-1 tiff - unsanitised input
503 {CAN-2004-1183}
504 - libtiff4 3.6.1-5
505 NOTE: not fixed in testing at time of DSA
506 [05 Jan 2005] DSA-625-1 pcal - buffer overflows
507 {CAN-2004-1289}
508 - pcal 4.8.0-1
509 NOTE: not fixed in testing at time of DSA
510 [05 Jan 2005] DSA-624-1 zip - buffer overflow
511 {CAN-2004-1010}
512 - zip 2.30-8
513 NOTE: fixed in testing at time of DSA
514 [04 Jan 2005] DSA-623-1 nasm - buffer overflow
515 {CAN-2004-1287}
516 - nasm 0.98.38-1.1
517 [03 Jan 2005] DSA-622-1 htmlheadline - insecure temporary files
518 {CAN-2004-1181}
519 NOTE: not in unstable
520 [31 Dec 2004] DSA-621-1 cupsys - buffer overflow
521 {CAN-2004-1125}
522 - cupsys 1.1.22-2
523 [30 Dec 2004] DSA-620-1 perl - insecure temporary files / directories
524 {CAN-2004-0452 CAN-2004-0976}
525 - perl 5.8.4-5
526 [30 Dev 2004] DSA-619-1 xpdf - buffer overflow
527 {CAN-2004-1125}
528 - xpdf 3.00-11
529 [24 Dec 2004] DSA-618-1 imlib - buffer overflows, integer overflows
530 {CAN-2004-1025 CAN-2004-1026}
531 - imlib 1.9.14-17.1
532 - imlib-png2 1.9.14-16.1
533 [24 Dec 2004] DSA-617-1 libtiff - insufficient input validation
534 {CAN-2004-1308}
535 - libtiff4 3.6.1-4
536 [23 Dec 2004] DSA-616-1 telnetd-ssl - format string
537 {CAN-2004-0998}
538 - telnetd-ssl 0.17.24+0.1-6
539 [22 Dec 2004] DSA-615-1 debmake - insecure temporary file
540 {CAN-2004-1179}
541 - debmake 3.7.7
542 [21 Dec 2004] DSA-614-1 xzgv - integer overflows
543 {CAN-2004-0994}
544 - xzgv 0.8-3
545 [21 Dec 2004] DSA-613-1 ethereal - inifinite loop
546 {CAN-2004-114}
547 - ethereal 0.10.8-1
548 [21 Dec 2004] DSA-614-1 xzgv - integer overflows
549 {CAN-2004-0994}
550 - xzgv 0.8-3
551 [20 Dec 2004] DSA-612-1 a2ps - unsanitised input
552 {CAN-2004-1170}
553 - a2ps 4.13b-4.2
554 [20 Dec 2004] DSA-611-1 htget - buffer overflow
555 {CAN-2004-0852}
556 NOTE: htget not in sarge or unstable
557 [17 Dec 2004] DSA-610-1 cscope - insecure temporary file
558 {CAN-2004-0996}
559 - cscope 15.5-1
560 [14 Dec 2004] DSA-609-1 atari800 - buffer overflows
561 {CAN-2004-1076}
562 - atari800 1.3.2-1
563 [14 Dec 2004] DSA-608-1 zgv - integer overflows, unsanitised input
564 {CAN-2004-1095 CAN-2004-0999}
565 - zgv 5.7-1.3
566 NOTE: changelog says he only patched 1095, but diff comparison
567 NOTE: shows 0999 was also fixed.
568 [10 Dec 2004] DSA-607-1 xfree86 - several
569 {CAN-2004-0914}
570 - xfree86 4.3.0.dfsg.1-9
571 [08 Dec 2004] DSA-606-1 nfs-utils - wrong signal handler
572 {CAN-2004-1014}
573 - nfs-utils 1:1.0.6-3.1
574 [06 Dec 2004] DSA-605-1 viewcvs - settings not honored
575 {CAN-2004-0915}
576 - viewcvs 0.9.2+cvs.1.0.dev.2004.07.28-1.2
577 [03 Dec 2004] DSA-604-1 hpsockd - missing input sanitising
578 {CAN-2004-0993}
579 - hpsockd 0.14
580 [01 Dec 2004] DSA-603-1 openssl - insecure temporary file
581 {CAN-2004-0975}
582 - openssl 0.9.7e-3
583 [29 Nov 2004] DSA-602-1 libgd2 - integer overlow
584 {CAN-2004-0941 CAN-2004-0990}
585 NOTE: different from fixes from earlier DSA for these CANs; 2004-0941 new
586 - libgd2 2.0.33-1.1
587 [29 Nov 2004] DSA-601-1 libgd1 - integer overflow
588 {CAN-2004-0941 CAN-2004-0990}
589 NOTE: different from fixes from earlier DSA for these CANs; 2004-0941 new
590 - libgd 1.8.4-36.1
591 [25 Nov 2004] DSA-599-1 tetex-bin - integer overflows
592 {CAN-2004-0888}
593 - tetex-bin 2.0.2-23
594 [25 Nov 2004] DSA-598-1 yardradius - buffer overflow
595 {CAN-2004-0987}
596 - yardradius 1.0.20-15
597 [25 Nov 2004] DSA-597-1 cyrus-imapd - buffer overflow
598 {CAN-2004-1012 CAN-2004-1013}
599 - cyrus21-imapd 2.1.17-1
600 [24 Nov 2004] DSA-596-2 sudo - missing input sanitising
601 {CAN-2004-1051}
602 - sudo 1.6.8p3-1
603 [24 Nov 2004] DSA-596-1 sudo - missing input sanitising
604 {CAN-2004-1051}
605 - sudo 1.6.8p3-1
606 [24 Nov 2004] DSA-595-1 bnc - buffer overflow
607 {CAN-2004-1052}
608 NOTE: package not in sarge or sid
609 [17 Nov 2004] DSA-594-1 apache - buffer overflows
610 {CAN-2004-0940}
611 - apache 1.3.33-2
612 [16 Nov 2004] DSA-593-1 imagemagick - buffer overflow
613 {CAN-2004-0981}
614 - imagemagick 6:6.0.6.2-1.5
615 [12 Nov 2004] DSA-592-1 ez-ipupdate - format string
616 {CAN-2004-0980}
617 - ez-ipupdate 3.0.11b8-8
618 [09 Nov 2004] DSA-591-1 libgd2 - integer overflows
619 {CAN-2004-0990}
620 - libgd2 2.0.30-1
621 [09 Nov 2004] DSA-590-1 gnats - format string vulnerability
622 {CAN-2004-0623}
623 NOTE: DSA got version of fix for unstable wrong
624 - gnats 4.0-6.1
625 [09 Nov 2004] DSA-589-1 libgd - integer overflows
626 {CAN-2004-0990}
627 - libgd1 1.8.4-36.1
628 [08 Nov 2004] DSA-588-1 gzip - insecure temporary files
629 {CAN-2004-0970}
630 NOTE: dsa says sid not affected
631 [08 Nov 2004] DSA-587-1 freeamp - buffer overflow
632 {CAN-2004-0964}
633 NOTE: DSA says zinf not vulnerable in sarge
634 [08 Nov 2004] DSA-586-1 ruby - infinite loop
635 {CAN-2004-0983}
636 - ruby1.6 1.6.8-12
637 - ruby1.8 1.8.1+1.8.2pre2-4
638 [05 Nov 2004] DSA-585-1 shadow - programming error
639 {CAN-2004-1001}
640 - shadow 1:4.0.3-30.3
641 [04 Nov 2004] DSA-584-1 dhcp - format string vulnerability
642 {CAN-2004-1006}
643 - dhcp 2.0pl5-19.1
644 [03 Nov 2004] DSA-583-1 lvm10 - insecure temporary directory
645 {CAN-2004-0972}
646 [02 Nov 2004] DSA-582-1 libxml - buffer overflow
647 {CAN-2004-0989}
648 - libxml 1.8.17-9
649 - libxml2 2.6.11-5
650 [01 Nov 2004] DSA-581-1 xpdf - integer overflows
651 {CAN-2004-0888}
652 - xpdf 3.00-9
653 [01 Nov 2004] DSA-580-1 iptables - missing initialisation
654 {CAN-2004-0986}
655 - iptables 1.2.11-4
656 [01 Nov 2004] DSA-579-1 abiword - buffer overflow
657 {CAN-2004-0645}
658 NOTE: according to DSA, sid's abiword is not affected. sarge is same
659 [01 Nov 2004] DSA-578-1 mpg123 - buffer overflow
660 {CAN-2004-0982}
661 - mpg123 0.59r-17
662 [29 Oct 2004] DSA-577-1 postgresql - symlink vulnerability
663 {CAN-2004-0977}
664 - postgresql 7.4.6-1
665 [29 Oct 2004] DSA-576-1 squid - multiple
666 {CVE-1999-0710 CAN-2004-0918}
667 - squid 2.5.7-1
668 [28 Oct 2004] DSA-575-1 catdoc - insecure temporary file
669 {CAN-2003-0193}
670 - catdoc 0.91.5-2
671 [28 Oct 2004] DSA-574-1 cabextract - missing directory sanitising
672 {CAN-2004-0916}
673 - cabextract 1.1-1
674 [21 Oct 2004] DSA-573-1 cupsys - integer overflows
675 {CAN-2004-0888}
676 - cupsys 1.1.20final+rc1-10
677 {CAN-2004-0889}
678 - xpdf 3.00-10
679 NOTE: kpdf and kfax are fixed in sarge, bug #278173 and #280373 for reference
680 - kpdf 4:3.3.1-1
681 - gpdf 2.8.0-1
682 - kfax 4:3.3.1-1
683 [21 Oct 2004] DSA-572-1 ecartis - multiple
684 {CAN-2004-0913}
685 - ecartis 1.0.0+cvs.20030911-8
686 [20 Oct 2004] DSA-571-1 libpng3 - buffer overflows, integer overflow
687 {CAN-2004-0955}
688 - libpng3 1.2.5.0-9
689 [20 Oct 2004] DSA-570-1 libpng - integer overflow
690 {CAN-2004-0955}
691 - libpng 1.0.15-8
692 [18 Oct 2004] DSA-569-1 netkit-telnet-ssl - invalid free(3)
693 {CAN-2004-0911}
694 - netkit-telnet-ssl 0.17.24+0.1-4
695 [16 Oct 2004] DSA-568-1 cyrus-sasl-mit - unsanitised input
696 {CAN-2004-0884}
697 NOTE removed from testing
698 NOTE maintainer reports hole not in cyrus-sasl2-mit
699 [15 Oct 2004] DSA-567-1 tiff - heap overflows
700 {CAN-2004-0803 CAN-2004-0804 CAN-2004-0886}
701 - tiff 3.6.1-2
702 - tiff3g 3.6.1-2
703 [14 Oct 2004] DSA-566-1 cupsys - unsanitised input
704 {CAN-2004-0923}
705 - cupsys 1.1.20final+rc1-9
706 [13 Oct 2004] DSA-565-1 sox - buffer overflows
707 {CAN-2004-0557}
708 - sox 12.17.4-9
709 [13 Oct 2004] DSA-564-1 mpg123 - missing user input sanitising
710 {CAN-2004-0805}
711 - mpg123 0.59r-16
712 [12 Oct 2004] DSA-563-1 cyrus-sasl - unsanitised input
713 {CAN-2004-0884}
714 - cyrus-sasl 1.5.28-6.2
715 - cyrus-sasl2 2.1.19-1.3
716 [11 Oct 2004] DSA-562-2 mysql - several vulnerabilities
717 {CAN-2004-0835 CAN-2004-0836 CAN-2004-0837}
718 - mysql 4.0.21-1
719 [11 Oct 2004] DSA-561-1 xfree86 - integer and stack overflows
720 {CAN-2004-0687 CAN-2004-0688}
721 - xfree86 4.3.0.dfsg.1-8
722 [07 Oct 2004] DSA-600-1 samba - arbitrary file access
723 {CAN-2004-0815}
724 NOTE: not affected according to DSA
725 [07 Oct 2004] DSA-560-1 lesstif1-1 - integer and stack overflows
726 {CAN-2004-0687 CAN-2004-0688}
727 - lesstif1-1 0.93.94-10
728 [06 Oct 2004] DSA-559-1 net-acct - insecure temporary file
729 {CAN-2004-0851}
730 - net-acct 0.71-7
731 [06 Oct 2004] DSA-558-1 libapache-mod-dav - null pointer dereference
732 {CAN-2004-0809}
733 - libapache-mod-dav 1.0.3-10
734 - apache2 2.0.51-1
735 [04 Oct 2004] DSA-557-1 pppoe - missing privilegue dropping
736 {CAN-2004-0564}
737 - pppoe 3.5-4
738 [03 Oct 2004] DSA-556-1 netkit-telnet - invalid free(3)
739 {CAN-2004-0911}
740 - netkit-telnet 0.17-26
741 [30 Sep 2004] DSA-555-1 freenet6 - file permissions
742 {CAN-2004-0563}
743 - freenet6 1.0-2.2
744 [27 Sep 2004] DSA-554-1 sendmail - pre-set password
745 {CAN-2004-0833}
746 - sendmail 8.13.1-13
747 [27 Sep 2004] DSA-553-1 getmail - symlink vulnerability
748 {CAN-2004-0880 CAN-2004-0881}
749 - getmail 3.2.5-1
750 [22 Sep 2004] DSA-552-1 imlib2 - unsanitised input
751 {CAN-2004-0802}
752 - imlib2 1.1.0-12.4
753 [21 Sep 2004] DSA-551-1 lukemftpd - incorrect internal variable handling
754 {CAN-2004-0794}
755 - lukemftpd 1.1-2.2
756 [20 Sep 2004] DSA-550-1 wv - buffer overflow
757 {CAN-2004-0645}
758 - wv 1.0.2-0.1
759 [17 Sep 2004] DSA-549-1 gtk+2.0 - multiple holes
760 {CAN-2004-0782 CAN-2004-0783 CAN-2004-0788}
761 - gtk+2.0 2.4.9-2
762 [16 Sep 2004] DSA-548-1 imlib - unsanitised input
763 {CAN-2004-0817}
764 - imlib 1.9.14-17
765 - imlib+png2 1.9.14-16.2
766 [16 Sep 2004] DSA-547-1 imagemagic - buffer overflows
767 {CAN-2004-0827}
768 - imagemagic 6.0.6.2-1
769 [16 Sep 2004] DSA-546-1 gdk-pixbuf - multiple holes
770 {CAN-2004-0753 CAN-2004-0782 CAN-2004-0788}
771 - gdk-pixbuf 0.22.0-7
772 [15 Sep 2004] DSA-545-1 cupsys - denial of service
773 {CAN-2004-0558}
774 - cupsys 1.1.20final+rc1-6
775 [14 Sep 2004] DSA-544-1 webmin - insecure temporary directory
776 {CAN-2004-0559}
777 - webmin 1.160-1
778 - usermin 1.090-1
779 [31 Aug 2004] DSA-543-1 krb5 -- several vulnerabilities
780 {CAN-2004-0642 CAN-2004-0643 CAN-2004-0644 CAN-2004-0772}
781 - krb5 1.3.4-3
782 [31 Aug 2004] DSA-458-2 python2.2 - buffer overflow
783 {CAN-2004-0150}
784 NOTE: not affected according to DSA
785 [30 Aug 2004] DSA-542-1 qt - unsanitised input
786 {CAN-2004-0691 CAN-2004-0692 CAN-2004-0693}
787 - qt-x11-free 3.3.3-4
788 [25 Aug 2004] DSA-541 icecast-server - cross site scripting
789 {CAN-2004-0781}
790 - icecast-server 1.3.12-8
791 [18 Aug 2004] DSA-540 mysql-dfsg - insecure file creation
792 {CAN-2004-0457}
793 - mysql-dfsg 4.0.20-11
794 [18 Aug 2004] DSA-539 kdelibs - denial of service
795 {CAN-2004-0689}
796 - kdelibs 4:3.2.3-3.sarge.1
797 [17 Aug 2004] DSA-538 rsync - unauthorised directory traversal and file access
798 - rsync 2.6.2-3
799 [16 Aug 2004] DSA-537 ruby - insecure file permissions
800 {CAN-2004-0755}
801 - ruby1.8 1.8.1+1.8.2pre1-4
802 HELP: is ruby1.6 vulnerable?
803 [04 Aug 2004] DSA-536 libpng - several vulnerabilities
804 {CAN-2004-0597 CAN-2004-0598 CAN-2004-0599 CAN-2004-0768}
805 - libpng 1.0.15-6
806 - libpng3 1.2.5.0-7
807 [02 Aug 2004] DSA-535 squirrelmail - several vulnerabilities
808 {CAN-2004-0519 CAN-2004-0520 CAN-2004-0521 CAN-2004-0639}
809 - squirrelmail 2:1.4.3a-0.1
810 [22 Jul 2004] DSA-534 mailreader - directory traversal
811 {CAN-2002-1581}
812 - mailreader 2.3.29-9
813 [22 Jul 2004] DSA-533 courier - cross-site scripting
814 {CAN-2004-0591}
815 - courier 0.45.4-4
816 [22 Jul 2004] DSA-532 libapache-mod-ssl - several vulnerabilities
817 {CAN-2004-0488 CAN-2004-0700}
818 - libapache-mod-ssl 2.8.19-1
819 [20 Jul 2004] DSA-531 php4 - several vulnerabilities
820 {CAN-2004-0594 CAN-2004-0595}
821 ! php4 4:4.3.8-1
822 [17 Jul 2004] DSA-530 l2tpd - buffer overflow
823 {CAN-2004-0649}
824 - l2tpd 0.70-pre20031121-2
825 [17 Jul 2004] DSA-529 netkit-telnet-ssl - format string
826 {CAN-2004-0640}
827 ! netkit-telnet-ssl 0.17.24+0.1-2
828 [17 Jul 2004] DSA-528 ethereal - denial of service
829 {CAN-2004-0635}
830 - ethereal 0.10.5-1
831 [03 Jul 2004] DSA-527 pavuk - buffer overflow
832 {CAN-2004-0456}
833 NOTE: DSA is incorrect; pavuk is in sarge and unstable.
834 ! pavuk 0.9pl28-3
835 [03 Jul 2004] DSA-526 webmin - several vulnerabilities
836 {CAN-2004-0582 CAN-2004-0583}
837 - webmin 1.150-1
838 [24 Jun 2004] DSA-525 apache - buffer overflow
839 {CAN-2004-0492}
840 - apache 1.3.31-2
841 [19 Jun 2004] DSA-524 rlpr - several vulnerabilities
842 {CAN-2004-0393 CAN-2004-0454}
843 - rlpr 2.02-7.1
844 [19 Jun 2004] DSA-523 www-sql - buffer overflow
845 {CAN-2004-0455}
846 - www-sql 0.5.7-18
847 [19 Jun 2004] DSA-522 super - format string vulnerability
848 {CAN-2004-0579}
849 - super 3.23.0-1
850 [18 Jun 2004] DSA-521 sup - format string vulnerability
851 {CAN-2004-0451}
852 - sup 1.8-11
853 [16 Jun 2004] DSA-520 krb5 - buffer overflows
854 {CAN-2004-0523}
855 - krb5 1.3.3-2
856 [15 Jun 2004] DSA-519 cvs - several vulnerabilities
857 {CAN-2004-0416 CAN-2004-0417 CAN-2004-0418}
858 - cvs 1:1.12.9-1
859 [14 Jun 2004] DSA-518 kdelibs - unsanitised input
860 {CAN-2004-0411}
861 - kdelibs 3.2.3
862 [10 Jun 2004] DSA-517 cvs - buffer overflow
863 {CAN-2004-0414]
864 - cvs 1.12.9-1
865 [07 Jun 2004] DSA-516 postgresql - buffer overflow
866 {CAN-2004-0547}
867 - postgresql 07.03.0200-3.
868 [05 Jun 2004] DSA-515 lha - several vulnerabilities
869 {CAN-2004-0234 CAN-2004-0235}
870 ! lha 1.14i-8
871 NOTE: If 1.14i-8 cannot get into testing, the fix for 1.14i-2.0.1
872 from the DSA could to updated via t-p-u.
873 [04 Jun 2004] DSA-514 kernel-image-sparc-2.2 - failing function and TLB flush
874 {CAN-2004-0077}
875 - kernel-image-sparc-2.2 9.1
876 NOTE: did not check other versions of the kernel
877 [03 Jun 2004] DSA-513 log2mail - format string
878 {CAN-2004-0450}
879 ! log2mail 0.2.8-3
880 [02 Jun 2004] DSA-512 gallery - unauthenticated access
881 {CAN-2004-0522}
882 - gallery 1.4.3-pl2-1
883 [30 May 2004] DSA-511 ethereal - buffer overflows
884 {CAN-2004-0176}
885 - ethereal 0.10.3-1
886 [29 May 2004] DSA-510 jftpgw - format string
887 {CAN-2004-0448}
888 - jftpgw 0.13.4-1
889 [29 May 2004] DSA-509 gatos - privilege escalation
890 {CAN-2004-0395}
891 - gatos 0.0.5-12
892 [22 May 2004] DSA-508 xpcd - buffer overflow
893 {CAN-2004-0402}
894 - xpcd 2.08-10
895 [19 May 2004] DSA-507 cadaver - buffer overflow
896 {CAN-2004-0398}
897 - cadaver 0.22.1-3
898 [19 May 2004] DSA-506 neon - buffer overflow
899 {CAN-2004-0398}
900 - neon 0.24.6.dfsg-1
901 [19 May 2004] DSA-505 cvs - heap overflow
902 {CAN-2004-0396}
903 - cvs 1.12.5-6
904 [18 May 2004] DSA-504 heimdal - missing input sanitising
905 {CAN-2004-0434}
906 - heimdal 0.6.2-1
907 [13 May 2004] DSA-503 mah-jong - missing argument check
908 {CAN-2004-0458}
909 - mah-jong 1.6.2-1
910 [11 May 2004] DSA-502 exim-tls - buffer overflow
911 {CAN-2004-0399 CAN-2004-0400}
912 NOTE: exim-tls not in sarge
913 [07 May 2004] DSA-501 exim - buffer overflow
914 {CAN-2004-0399 CAN-2004-0400}
915 - exim 3.36-11
916 - exim4 4.33-1
917 [01 May 2004] DSA-500 flim - insecure temporary file
918 {CAN-2004-0422}
919 - flim 1:1.14.6+0.20040415-1
920 [01 May 2004] DSA-499 rsync - directory traversal
921 {CAN-2004-0426}
922 - rsync 2.6.1-1
923 [30 Apr 2004] DSA-498 libpng - out of bound access
924 {CAN-2004-0421}
925 - libpng 1.0.15-5
926 - libpng3 1.2.5.0-6
927 [29 Apr 2004] DSA-497 mc - several vulnerabilities
928 {CAN-2004-0226 CAN-2004-0231 CAN-2004-0232}
929 - mc 1:4.6.0-4.6.1-pre1-2
930 [29 Apr 2004] DSA-496 eterm - missing input sanitising
931 {CAN-2003-0068}
932 - eterm 0.9.2-6
933 [26 Apr 2004] DSA-495 linux-kernel-2.4.16-arm - several vulnerabilities
934 {CAN-2003-0127 CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178}
935 NOTE: 2.4.16 not present. Did not check newer kernels.
936 [21 Apr 2004] DSA-494 ident2 - buffer overflow
937 {CAN-2004-0408}
938 - ident2 1.04-2
939 [21 Apr 2004] DSA-493 xchat - buffer overflow
940 {CAN-2004-0409}
941 - xchat 2.0.8-1
942 [18 Apr 2004] DSA-492 iproute - denial of service
943 {CAN-2003-0856}
944 - iproute 20010824-13.1
945 [17 Apr 2004] DSA-491 linux-kernel-2.4.19-mips - several vulnerabilities
946 {CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178}
947 NOTE: 2.4.19 not present. Did not check newer kernels.
948 [17 Apr 2004] DSA-490 zope - arbitrary code execution
949 {CVE-2002-0688}
950 - zope 2.6.0-0.1
951 [17 Apr 2004] DSA-489 linux-kernel-2.4.17-mips+mipsel - several vulnerabilities
952 {CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178}
953 NOTE: 2.4.17 not present. Did not check newer kernels.
954 [16 Apr 2004] DSA-488 logcheck - insecure temporary directory
955 {CAN-2004-0404}
956 - logcheck 1.1.1-13.2
957 [16 Apr 2004] DSA-487 neon - format string
958 {CAN-2004-0179}
959 - newo 0.24.5-1
960 [16 Apr 2004] DSA-486 cvs - several vulnerabilities
961 {CAN-2004-0180 CAN-2004-0405}
962 - cvs 1:1.12.5-4
963 [14 Apr 2004] DSA-485 ssmtp - format string
964 {CAN-2004-0156}
965 - ssmtp 2.60.7
966 [14 Apr 2004] DSA-484 xonix - failure to drop privileges
967 {CAN-2004-0157}
968 - xonix 1.4-21
969 [14 Apr 2004] DSA-483 mysql - insecure temporary file creation
970 {CAN-2004-0381}
971 - mysql-dfsg 4.0.18-4
972 {CAN-2004-0388}
973 ! mysql-dfsg 4.0.18-6
974 [14 Apr 2004] DSA-482 linux-kernel-2.4.17-apus+s390 - several vulnerabilities
975 {CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178}
976 NOTE: 2.4.17 not present. Did not check newer kernels.
977 [14 Apr 2004] DSA-481 linux-kernel-2.4.17-ia64 - several vulnerabilities
978 {CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178}
979 NOTE: 2.4.17 not present. Did not check newer kernels.
980 [14 Apr 2004] DSA-480 linux-kernel-2.4.17+2.4.18-hppa - several vulnerabilities
981 {CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178}
982 NOTE: 2.4.17/18 not present. Did not check newer kernels.
983 [14 Apr 2004] DSA-479 linux-kernel-2.4.18-alpha+i386+powerpc - several vulnerabilities
984 {CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178}
985 NOTE: 2.4.18 not present. Did not check newer kernels.
986 [06 Apr 2004] DSA-478 tcpdump - denial of service
987 {CAN-2004-0183 CAN-2004-0184}
988 - tcpdump 3.7.2-4
989 [06 Apr 2004] DSA-477 xine-ui - insecure temporary file creation
990 {CAN-2004-0372}
991 - xine-ui 0.99.1-1
992 [06 Apr 2004] DSA-476 heimdal - cross-realm
993 {CAN-2004-0371}
994 - heimdal 0.6.1-1
995 [05 Apr 2004] DSA-475 linux-kernel-2.4.18-hppa - several vulnerabilities
996 {CAN-2003-0961 CAN-2003-0985 CAN-2004-0077}
997 NOTE: 2.4.18 not present. Did not check newer kernels.
998 [03 Apr 2004] DSA-474 squid - ACL bypass
999 {CAN-2004-0189}
1000 - squid 2.5.5-1
1001 [03 Apr 2004] DSA-473 oftpd - denial of service
1002 {CAN-2004-0376}
1003 - oftpd 20040304-1
1004 [03 Apr 2004] DSA-472 fte - several vulnerabilities
1005 {CAN-2003-0648}
1006 - fte 0.50.0-1.1
1007 [02 Apr 2004] DSA-471 interchange - missing input sanitising
1008 {CAN-2004-0374}
1009 - interchange 5.0.1-1
1010 [01 Apr 2004] DSA-470 linux-kernel-2.4.17-hppa - several vulnerabilities
1011 {CAN-2003-0961 CAN-2003-0985 CAN-2004-0077}
1012 NOTE: 2.4.17 not present. Did not check newer kernels.
1013 [29 Mar 2004] DSA-469 pam-pgsql - missing input sanitising
1014 {CAN-2004-0366}
1015 - pam-pgsql 0.5.2-7.1
1016 [24 Mar 2004] DSA-468 emil - several vulnerabilities
1017 {CAN-2004-0152 CAN-2004-0153}
1018 - emil 2.1.0-beta9-14
1019 [23 Mar 2004] DSA-467 ecartis - several vulnerabilities
1020 {CAN-2003-0781 CAN-2003-0782}
1021 - ecartis 1.0.0+cvs.20030911
1022 [18 Mar 2004] DSA-466 linux-kernel-2.2.10-powerpc-apus - failing function and TLB flush
1023 {CAN-2004-0077}
1024 NOTE: 2.2.10 not present. Did not check newer kernels.
1025 [17 Mar 2004] DSA-465 openssl - several vulnerabilities
1026 {CAN-2004-0079 CAN-2004-0081}
1027 - openssl 0.9.7d-1
1028 NOTE: CAN-2004-0081 only affects 0.9.6.
1029 NOTE: 0.9.7d also fixes CAN-2004-0112
1030 - openssl 0.9.6l
1031 - openssl096 0.9.6m-1
1032 [16 Mar 2004] DSA-464 gdk-pixbuf - broken image handling
1033 {CAN-2004-0111}
1034 - gdk-pixbuf 0.22.0-3
1035 [12 Mar 2004] DSA-463 samba - privilege escalation
1036 {CAN-2004-0186}
1037 - samba 3.0.2-2
1038 [12 Mar 2004] DSA-462 xitalk - missing privilege release
1039 {CAN-2004-0151}
1040 - xitalk 1.1.11-11
1041 [11 Mar 2004] DSA-461 calife - buffer overflow
1042 {CAN-2004-0188}
1043 - calife 2.8.6-1
1044 [10 Mar 2004] DSA-460 sysstat - insecure temporary file
1045 {CAN-2004-0108}
1046 - sysstat 5.0.2-1
1047 [10 Mar 2004] DSA-459 kdelibs - cookie path traversal
1048 {CAN-2003-0592}
1049 - kdelibs 4:3.1.3-1
1050 [09 Mar 2004] DSA-458 python2.2 - buffer overflow
1051 {CAN-2004-0150}
1052 NOTE: not affected according to DSA
1053 [08 Mar 2004] DSA-457 wu-ftpd - several vulnerabilities
1054 {CAN-2004-0148 CAN-2004-0185}
1055 - wu-ftpd 2.6.2-17.1
1056 [06 Mar 2004] DSA-456 linux-kernel-2.2.19-arm - failing function and TLB flush
1057 {CAN-2004-0077}
1058 NOTE: 2.2.19 not present. Did not check newer kernels.
1059 [03 Mar 2004] DSA-455 libxml - buffer overflows
1060 {CAN-2004-0110}
1061 - libxml 1.8.17-5
1062 - libxml2 2.6.6-1
1063 [02 Mar 2004] DSA-454 linux-kernel-2.2.22-alpha - failing function and TLB flush
1064 {CAN-2004-0077}
1065 NOTE: 2.2.22 not present. Did not check newer kernels.
1066 [02 Mar 2004] DSA-453 linux-kernel-2.2.20-i386+m68k+powerpc - failing function and TLB flush
1067 {CAN-2004-0077}
1068 NOTE: 2.2.20 not present. Did not check newer kernels.
1069 [29 Feb 2004] DSA-452 libapache-mod-python - denial of service
1070 {CAN-2003-0973}
1071 - libapache-mod-python 2:2.7.10-1
1072 [27 Feb 2004] DSA-451 xboing - buffer overflows
1073 {CAN-2004-0149}
1074 - xboing 2.4-26.1
1075 [27 Feb 2004] DSA-450 linux-kernel-2.4.19-mips - several vulnerabilities
1076 {CAN-2003-0961 CAN-2003-0985 CAN-2004-0077}
1077 NOTE: 2.4.19 not present. Did not check newer kernels.
1078 [24 Feb 2004] DSA-449 metamail - buffer overflow, format string bugs
1079 {CAN-2004-0104 CAN-2004-0105}
1080 - metamail 2.7-45.2
1081 [22 Feb 2004] DSA-448 pwlib - several vulnerabilities
1082 {CAN-2004-0097}
1083 - pwlib 1.5.2-4
1084 [22 Feb 2004] DSA-447 hsftp - format string
1085 {CAN-2004-0159}
1086 ! hsftp 1.15-1
1087 [21 Feb 2004] DSA-446 synaesthesia - insecure file creation
1088 {CAN-2004-0160}
1089 DSA notes not setuid anymore so ok
1090 [21 Feb 2004] DSA-445 lbreakout2 - buffer overflow
1091 {CAN-2004-0158}
1092 - lbreakout2 2.4
1093 [20 Feb 2004] DSA-444 linux-kernel-2.4.17-ia64 - missing function return value check
1094 {CAN-2004-0077}
1095 NOTE: 2.4.17 not present. Did not check newer kernels.
1096 [19 Feb 2004] DSA-443 xfree86 - several vulnerabilities
1097 {CAN-2003-0690}
1098 - xfree86 4.3.0-0pre1v2
1099 {CAN-2004-0083 CAN-2004-0084 CAN-2004-0106}
1100 - xfree86 4.3.0-1
1101 {CAN-2004-0093 CAN-2004-0094}
1102 - xfree86 4.2.1-6
1103 [19 Feb 2004] DSA-442 linux-kernel-2.4.17-s390 - several vulnerabilities
1104 {CAN-2003-0001 CAN-2003-0244 CAN-2003-0246 CAN-2003-0247 CAN-2003-0248 CAN-2003-0364 CAN-2003-0961 CAN-2003-0985 CAN-2004-0077 CVE-2002-0429}
1105 NOTE: 2.4.17 not present. Did not check newer kernels.
1106 [18 Feb 2004] DSA-441 linux-kernel-2.4.17-mips+mipsel - missing function return value check
1107 {CAN-2004-0077}
1108 NOTE: 2.4.17 not present. Did not check newer kernels.
1109 [18 Feb 2004] DSA-440 linux-kernel-2.4.17-powerpc-apus - several vulnerabilities
1110 {CAN-2003-0961 CAN-2003-0985 CAN-2004-0077}
1111 NOTE: 2.4.17 not present. Did not check newer kernels.
1112 [18 Feb 2004] DSA-439 linux-kernel-2.4.16-arm - several vulnerabilities
1113 {CAN-2003-0961 CAN-2003-0985 CAN-2004-0077}
1114 NOTE: 2.4.16 not present. Did not check newer kernels.
1115 [18 Feb 2004] DSA-438 linux-kernel-2.4.18-alpha+i386+powerpc - missing function return value check
1116 {CAN-2004-0077}
1117 NOTE: 2.4.17 not present. Did not check newer kernels.
1118 [11 Feb 2004] DSA-437 cgiemail - open mail relay
1119 {CAN-2002-1575}
1120 - cgiemail 1.6-20
1121 [08 Feb 2004] DSA-436 mailman - several vulnerabilities
1122 {CAN-2003-0991}
1123 NOTE: apparently specific to mailman 2.0, not 2.1
1124 {CAN-2003-0965}
1125 - mailman 2.1.4-1
1126 {CAN-2003-0038}
1127 - mailman 2.1.1-1
1128 [06 Feb 2004] DSA-435 mpg123 - heap overflow
1129 {CAN-2003-0865}
1130 - mpg123 0.59r-15
1131 [05 Feb 2004] DSA-434 gaim - several vulnerabilities
1132 {CAN-2004-0005 CAN-2004-0006 CAN-2004-0007 CAN-2004-0008}
1133 - gaim 1:0.75-2
1134 [04 Feb 2004] DSA-433 kernel-patch-2.4.17-mips - integer overflow
1135 {CAN-2003-0961}
1136 NOTE: 2.4.17 not present. Did not check newer kernels.
1137 [03 Feb 2004] DSA-432 crawl - buffer overflow
1138 {CAN-2004-0103}
1139 - crawl 4.0.0beta26-4
1140 [01 Feb 2004] DSA-431 perl - information leak
1141 {CAN-2003-0618}
1142 - perl 5.8.3-3
1143 [28 Jan 2004] DSA-430 trr19 - missing privilege release
1144 {CAN-2004-0047}
1145 - trr19 1.0beta5-17.1
1146 [26 Jan 2004] DSA-429 gnupg - cryptographic weakness
1147 {CAN-2003-0971}
1148 - gnupg 1.2.4-1
1149 [20 Jan 2004] DSA-428 slocate - buffer overflow
1150 {CAN-2003-0848}
1151 - slocate 2.7-3
1152 [19 Jan 2004] DSA-427 linux-kernel-2.4.17-mips+mipsel - missing boundary check
1153 {CAN-2003-0985}
1154 NOTE: 2.4.17 not present. Did not check newer kernels.
1155 [18 Jan 2004] DSA-426 netpbm-free - insecure temporary files
1156 {CAN-2003-0924}
1157 - netpbm-free 2:9.25-9
1158 [16 Jan 2004] DSA-425 tcpdump - multiple vulnerabilities
1159 {CAN-2003-1029 CAN-2003-0989 CAN-2004-0055 CAN-2004-0057}
1160 HELP: No idea if this is fixed, we have a new upstream version
1161 HELP: that came out after these advisories, but neither the debian nor
1162 HELP: the upstream changelog seem to mention them.
1163 NOTE: Mailed maintainer.
1164 [16 Jan 2004] DSA-424 mc - buffer overflow
1165 {CAN-2003-1023}
1166 - mc 1:4.6.0-4.6.1-pre1-1
1167 [15 Jan 2004] DSA-423 linux-kernel-2.4.17-ia64 - several vulnerabilities
1168 {CAN-2003-0001 CAN-2003-0018 CAN-2003-0127 CAN-2003-0461 CAN-2003-0462 CAN-2003-0476 CAN-2003-0501 CAN-2003-0550 CAN-2003-0551 CAN-2003-0552 CAN-2003-0961 CAN-2003-0985}
1169 NOTE: 2.4.17 not present. Did not check newer kernels.
1170 [13 Jan 2004] DSA-422 cvs - remote vulnerability
1171 - cvs 1.11.11
1172 [12 Jan 2004] DSA-421 mod-auth-shadow - password expiration
1173 {CAN-2004-0041}
1174 - mod-auth-shadow 1.4-1
1175 [12 Jan 2004] DSA-420 jitterbug - improperly sanitised input
1176 {CAN-2004-0028}
1177 - jitterbug 1.6.2-4.5
1178 [09 Jan 2004] DSA-419 phpgroupware - missing filename sanitising, SQL injection
1179 {CAN-2004-0016 CAN-2004-0017}
1180 - phpgroupware 0.9.14.007-4
1181 [07 Jan 2004] DSA-418 vbox3 - privilege leak
1182 {CAN-2004-0015}
1183 - vbox3 0.1.8
1184 [07 Jan 2004] DSA-417 linux-kernel-2.4.18-powerpc+alpha - missing boundary check
1185 {CAN-2003-0961 CAN-2003-0985}
1186 NOTE: 2.4.18 not present. Did not check newer kernels.
1187 [06 Jan 2004] DSA-416 fsp - buffer overflow, directory traversal
1188 {CAN-2003-1022 CAN-2004-0011}
1189 - fsp 2.81.b18-1
1190 [06 Jan 2004] DSA-415 zebra - denial of service
1191 {CAN-2003-0795 CAN-2003-0858}
1192 - quagga 0.96.4x-4
1193 [06 Jan 2004] DSA-414 jabber - denial of service
1194 {CAN-2004-0013}
1195 - jabber 1.4.3-1
1196 [06 Jan 2004] DSA-413 linux-kernel-2.4.18 - missing boundary check
1197 {CAN-2003-0985}
1198 NOTE: 2.4.18 not present. Did not check newer kernels.
1199 [05 Jan 2004] DSA-412 nd - buffer overflows
1200 {CAN-2004-0014}
1201 - nd 0.8.2-1
1202 [05 Jan 2004] DSA-411 mpg321 - format string vulnerability
1203 {CAN-2003-0969}
1204 - mpg321 0.2.10.3
1205 [05 Jan 2004] DSA-410 libnids - buffer overflow
1206 {CAN-2003-0850}
1207 - libnids 1.18-1
1208 [05 Jan 2004] DSA-409 bind - denial of service
1209 {CAN-2003-0914}
1210 - bind 1:8.4.3-1
1211 [05 Jan 2004] DSA-408 screen - integer overflow
1212 {CAN-2003-0972}
1213 - screen 4.0.2-0.1
1214 [05 Jan 2004] DSA-407 ethereal - buffer overflows
1215 {CAN-2003-0925 CAN-2003-0926 CAN-2003-0927 CAN-2003-1012 CAN-2003-1013
1216 - ethereal 0.10.0-1
1217 [05 Jan 2004] DSA-406 lftp - buffer overflow
1218 - lftp 2.6.10-1
1219 [30 Dec 2003] DSA-405 xsok - missing privilege release
1220 {CAN-2003-0949}
1221 - xsok 1.02-11
1222 [04 Dec 2003] DSA-404 rsync - heap overflow
1223 {CAN-2003-0962}
1224 - rsync 2.5.6-1.1
1225 [01 Dec 2003] DSA-403 kernel-image-2.4.18-1-alpha, kernel-image-2.4.18-1-i386, kernel-source-2.4.18 - local root exploit
1226 {CAN-2003-0961}
1227 NOTE: 2.4.18 not present in sarge, did not check newer kernels.
1228 [17 Nov 2003] DSA-402 minimalist - unsanitised input
1229 {CAN-2003-0902}
1230 - minimalist 2.4-1
1231 [17 Nov 2003] DSA-401 hylafax - format strings
1232 {CAN-2003-0886}
1233 - hylafax 1:4.1.8-1
1234 [11 Nov 2003] DSA-400 omega-rpg - buffer overflow
1235 {CAN-2003-0932}
1236 - omega-rpg 0.90-pa9-11
1237 [10 Nov 2003] DSA-399 epic4 - buffer overflow
1238 {CAN-2003-0328}
1239 - epic4 1:1.1.11.20030409-2
1240 [10 Nov 2003] DSA-398 conquest - buffer overflow
1241 {CAN-2003-0933}
1242 - conquest 7.2-5
1243 [07 Nov 2003] DSA-397 postgresql - buffer overflow
1244 {CAN-2003-0901}
1245 - postgresql 7.3.4
1246 [29 Oct 2003] DSA-396 thttpd - missing input sanitizing, wrong calculation
1247 {CAN-2002-1562 CAN-2003-0899}
1248 - thttpd 2.23beta1-2.3
1249 [15 Oct 2003] DSA-395 tomcat4 - incorrect input handling
1250 {CAN-2003-0866}
1251 ! tomcat4 4.1.24-2
1252 NOTE another RC (unreproducible?) bug and missing deps (#263201)
1253 NOTE are keeping the fix out of testing
1254 [11 Oct 2003] DSA-394 openssl095 - ASN.1 parsing vulnerability
1255 {CAN-2003-0543 CAN-2003-0544 CAN-2003-0545}
1256 - openssl 0.9.7c
1257 - openssl096 0.9.6k
1258 [01 Oct 2003] DSA-393 openssl - denial of service
1259 {CAN-2003-0543 CAN-2003-0544 CAN-2003-0545}
1260 - openssl 0.9.7c
1261 - openssl096 0.9.6k
1262 [29 Sep 2003] DSA-392 webfs - buffer overflows, file and directory exposure
1263 {CAN-2003-0832 CAN-2003-0833}
1264 - webfs 1.20
1265 [28 Sep 2003] DSA-391 freesweep - buffer overflow
1266 {CAN-2003-0828}
1267 - freesweep 0.88-4.1
1268 [26 Sep 2003] DSA-390 marbles - buffer overflow
1269 {CAN-2003-0830}
1270 NOTE not present in sid, sarge
1271 [20 Sep 2003] DSA-389 ipmasq - insecure packet filtering rules
1272 {CAN-2003-0785}
1273 - ipmasq 3.5.12
1274 [19 Sep 2003] DSA-388 kdebase - several vulnerabilities
1275 {CAN-2003-0690 CAN-2003-0692}
1276 - kdebase 4:3.2
1277 [18 Sep 2003] DSA-387 gopher - buffer overflows
1278 {CAN-2003-0805}
1279 - gopher 3.0.6
1280 [18 Sep 2003] DSA-386 libmailtools-perl - input validation bug
1281 {CAN-2002-1271}
1282 - libmailtools-perl 1.51
1283 [18 Sep 2003] DSA-385 hztty - buffer overflows
1284 {CAN-2003-0783}
1285 - hztty 2.0-6
1286 [17 Sep 2003] DSA-384 sendmail - buffer overflows
1287 {CAN-2003-0681 CAN-2003-0694}
1288 - sendmail 8.12.10-1
1289 [17 Sep 2003] DSA-383 ssh-krb5 - possible remote vulnerability
1290 {CAN-2003-0693}
1291 {CAN-2003-0695}
1292 {CAN-2003-0682}
1293 HELP: Screwy changelog does not make sense. Filed bug.
1294 [16 Sep 2003] DSA-382 ssh - possible remote vulnerability
1295 {CAN-2003-0693}
1296 - openssh 1:3.6.1p2-6.0
1297 {CAN-2003-0695}
1298 - openssh 1:3.7.1
1299 {CAN-2003-0682}
1300 - openssh 1:3.6.1p2-9
1301 [13 Sep 2003] DSA-381 mysql - buffer overflow
1302 {CAN-2003-0780}
1303 - mysql-dfsg 4.0.15-1
1304 [12 Sep 2003] DSA-380 xfree86 - buffer overflows, denial of service
1305 {CAN-2003-0063}
1306 - xfree86 4.2.1-11
1307 {CAN-2003-0071}
1308 - xfree86 4.2.1-11
1309 {CAN-2002-0164}
1310 - xfree86 4.2.1-11
1311 {CAN-2003-0730}
1312 - xfree86 4.2.1-12
1313 [11 Sep 2003] DSA-379 sane-backends - several vulnerabilities
1314 {CAN-2003-0773 CAN-2003-0774 CAN-2003-0775 CAN-2003-0776 CAN-2003-0777 CAN-2003-0778}
1315 - sane-backends 1.0.11-1
1316 [07 Sep 2003] DSA-378 mah-jong - buffer overflows, denial of service
1317 {CAN-2003-0705 CAN-2003-0706}
1318 - mah-jong 1.5.6-2
1319 [04 Sep 2003] DSA-377 wu-ftpd - insecure program execution
1320 {CVE-1999-0997}
1321 - wu-ftpd 2.6.2-15
1322 [04 Sep 2003] DSA-376 exim - buffer overflow
1323 {CAN-2003-0743}
1324 - exim 3.36-8
1325 [29 Aug 2003] DSA-375 node - buffer overflow, format string
1326 {CAN-2003-0707 CAN-2003-0708}
1327 - node 0.3.2-1
1328 [26 Aug 2003] DSA-374 libpam-smb - buffer overflow
1329 {CAN-2003-0686}
1330 NOTE: not in sid/sarge
1331 [16 Aug 2003] DSA-373 autorespond - buffer overflow
1332 {CAN-2003-0654}
1333 - autorespond 2.0.4-1
1334 [16 Aug 2003] DSA-372 netris - buffer overflow
1335 {CAN-2003-0685}
1336 - netris 0.52-1
1337 [11 Aug 2003] DSA-371 perl - cross-site scripting
1338 {CAN-2003-0615}
1339 - perl 5.8.0-19
1340 [08 Aug 2003] DSA-370 pam-pgsql - format string
1341 {CAN-2003-0672}
1342 - pam-pgsql 0.5.2-7
1343 [08 Aug 2003] DSA-369 zblast - buffer overflow
1344 {CAN-2003-0613}
1345 - zblast 1.2.1-7
1346 [08 Aug 2003] DSA-368 xpcd - buffer overflow
1347 {CAN-2003-0649}
1348 - xpcd 2.08-9
1349 [08 Aug 2003] DSA-367 xtokkaetama - buffer overflow
1350 {CAN-2003-0652}
1351 - xtokkaetama 1.0b-9
1352 [05 Aug 2003] DSA-366 eroaster - insecure temporary file
1353 {CAN-2003-0656}
1354 - eroaster 2.2.0-0.5-1
1355 [05 Aug 2003] DSA-365 phpgroupware - several vulnerabilities
1356 {CAN-2003-0504 CAN-2003-0599 CAN-2003-0657}
1357 - phpgroupware 0.9.14.007-1)
1358 [04 Aug 2003] DSA-364 man-db - buffer overflows, arbitrary command execution
1359 {CAN-2003-0620 CAN-2003-0645}
1360 - man-db 2.4.1-13
1361 [03 Aug 2003] DSA-363 postfix - denial of service, bounce-scanning
1362 {CAN-2003-0468 CAN-2003-0540}
1363 - postfix 1.1.12
1364 [02 Aug 2003] DSA-362 mindi - insecure temporary file
1365 {CAN-2003-0617}
1366 - mindi 0.86-1
1367 [01 Aug 2003] DSA-361 kdelibs, kdelibs-crypto - several vulnerabilities
1368 {CAN-2003-0459 CAN-2003-0370}
1369 - kdelibs 4:3.1.3-1
1370 [01 Aug 2003] DSA-360 xfstt - several vulnerabilities
1371 {CAN-2003-0581}
1372 - xfstt 1.5-1
1373 {CAN-2003-0625}
1374 - xfstt 1.5.1-1
1375 [31 Jul 2003] DSA-359 atari800 - buffer overflows
1376 {CAN-2003-0630}
1377 - atari800 1.3.1-2
1378 [31 Jul 2003] DSA-358 linux-kernel-2.4.18 - several vulnerabilities
1379 {CAN-2003-0461 CAN-2003-0462 CAN-2003-0476 CAN-2003-0501 CAN-2003-0550 CAN-2003-0551 CAN-2003-0552 CAN-2003-0018 CAN-2003-0619 CAN-2003-0643}
1380 NOTE: 2.4.18/2.4.20 not in unstable/testing. Did not check newer ones.
1381 [31 Jul 2003] DSA-357 wu-ftpd - remote root exploit
1382 {CAN-2003-0466}
1383 - wu-ftpd 2.6.2-12
1384 [30 Jul 2003] DSA-356 xtokkaetama - buffer overflows
1385 {CAN-2003-0611}
1386 - xtokkaetama 1.0b-8
1387 [30 Jul 2003] DSA-355 gallery - cross-site scripting
1388 {CAN-2003-0614}
1389 - gallery 1.3.4-3
1390 [29 Jul 2003] DSA-354 xconq - buffer overflows
1391 {CAN-2003-0607}
1392 - xconq 7.4.1-2.1
1393 [29 Jul 2003] DSA-353 sup - insecure temporary file
1394 {CAN-2003-0606}
1395 - sup 1.8-9
1396 [22 Jul 2003] DSA-352 fdclone - insecure temporary directory
1397 {CAN-2003-0596}
1398 - fdclone 2.04-1
1399 [16 Jul 2003] DSA-351 php4 - cross-site scripting
1400 {CAN-2003-0442}
1401 - php4 4:4.3.2+rc3-1
1402 [15 Jul 2003] DSA-350 falconseye - buffer overflow
1403 {CAN-2003-0358}
1404 NOTE: not in testing, fixed in unstable
1405 - falconseye 1.9.3-9
1406 [14 Jul 2003] DSA-349 nfs-utils - buffer overflow
1407 {CAN-2003-0252}
1408 - nfs-utils 1:1.0.3-2
1409 [11 Jul 2003] DSA-348 traceroute-nanog - integer overflow, buffer overflow
1410 {CAN-2003-0453}
1411 - traceroute-nanog 6.1.1-1.3
1412 [08 Jul 2003] DSA-347 teapop - SQL injection
1413 {CAN-2003-0515}
1414 - teapop 0.3.5-2
1415 [08 Jul 2003] DSA-346 phpsysinfo - directory traversal
1416 {CAN-2003-0536}
1417 - phpsysinfo 2.1-1
1418 [08 Jul 2003] DSA-345 xbl - buffer overflow
1419 {CAN-2003-0535}
1420 - xbl 1.0k-6
1421 [08 Jul 2003] DSA-344 unzip - directory traversal
1422 {CAN-2003-0282}
1423 - unzip 5.50-3
1424 [08 Jul 2003] DSA-343 skk, ddskk - insecure temporary file
1425 {CAN-2003-0539}
1426 - skk 10.62a-6
1427 - ddskk 12.1.cvs.20030622-1
1428 [07 Jul 2003] DSA-342 mozart - unsafe mailcap configuration
1429 {CAN-2003-0538}
1430 NOTE: mozart is not in sarge
1431 - mozart 1.2.5.20030212-2
1432 [07 Jul 2003] DSA-341 liece - insecure temporary file
1433 {CAN-2003-0537}
1434 - liece 2.0+0.20030527cvs-1
1435 [06 Jul 2003] DSA-340 x-face-el - insecure temporary file
1436 - x-face-el 1.3.6.23-1
1437 [06 Jul 2003] DSA-339 semi - insecure temporary file
1438 {CAN-2003-0440}
1439 - semi 1.14.5+20030609-1
1440 [29 Jun 2003] DSA-338 proftpd - SQL injection
1441 {CAN-2003-0500}
1442 - proftpd 1.2.8-8
1443 [29 Jun 2003] DSA-337 gtksee - buffer overflow
1444 {CAN-2003-0444}
1445 ! gtksee 0.5.6-1
1446 [29 Jun 2003] DSA-336 linux-kernel-2.2.20 - several vulnerabilities
1447 {CAN-2002-1380 CVE-2002-0429 CAN-2003-0001 CAN-2003-0127 CAN-2003-0364 CAN-2003-0246 CAN-2003-0244 CAN-2003-0247 CAN-2003-0248}
1448 - kernel-source-2.2.25 2.2.25-3
1449 NOTE: did not check newer kernels
1450 [28 Jun 2003] DSA-335 mantis - incorrect permissions
1451 {CAN-2003-0499}
1452 - mantis 0.17.5-6
1453 [28 Jun 2003] DSA-334 xgalaga - buffer overflows
1454 {CAN-2003-0454}
1455 - xgalaga 2.0.34-22
1456 [27 Jun 2003] DSA-333 acm - integer overflow
1457 {CVE-2002-0391}
1458 - acm 5.0-10
1459 [27 Jun 2003] DSA-332 linux-kernel-2.4.17 - several vulnerabilities
1460 {CVE-2002-0429 CAN-2003-0001 CAN-2003-0127 CAN-2003-0244 CAN-2003-0246 CAN-2003-0247 CAN-2003-0248 CAN-2003-0364}
1461 NOTE: note in the archive, and did not check newer kernels
1462 [27 Jun 2003] DSA-331 imagemagick - insecure temporary file
1463 {CAN-2003-0455}
1464 - imagemagick 4:5.5.7-1
1465 [23 Jun 2003] DSA-330 tcptraceroute - failure to drop root privileges
1466 {CAN-2003-0489}
1467 - tcptraceroute 1.4-4
1468 [20 Jun 2003] DSA-329 osh - buffer overflows
1469 {CAN-2003-0452}
1470 - osh 1.7-12
1471 [19 Jun 2003] DSA-328 webfs - buffer overflow
1472 {CAN-2003-0445}
1473 - webfs 1.20
1474 [19 Jun 2003] DSA-327 xbl - buffer overflows
1475 {CAN-2003-0451}
1476 - xbl 1.0k-5
1477 [19 Jun 2003] DSA-326 orville-write - buffer overflows
1478 {CAN-2003-0441}
1479 - orville-write 2.54-1
1480 [19 Jun 2003] DSA-325 eldav - insecure temporary file
1481 {CAN-2003-0438}
1482 - eldav 0.7.2-1
1483 [18 Jun 2003] DSA-324 ethereal - several vulnerabilities
1484 {CAN-2003-0428 CAN-2003-0429 CAN-2003-0431 CAN-2003-0432}
1485 - ethereal 0.9.13-1.
1486 [16 Jun 2003] DSA-323 noweb - insecure temporary files
1487 {CAN-2003-0381}
1488 - noweb 2.10c-2
1489 [16 Jun 2003] DSA-322 typespeed - buffer overflow
1490 {CAN-2003-0435}
1491 - typespeed 0.4.4
1492 [13 Jun 2003] DSA-321 radiusd-cistron - buffer overflow
1493 {CAN-2003-0450}
1494 - radiusd-cistron 1.6.6-2
1495 [13 Jun 2003] DSA-320 mikmod - buffer overflow
1496 {CAN-2003-0427}
1497 - mikmod 3.1.6-6
1498 [12 Jun 2003] DSA-319 webmin - session ID spoofing
1499 {CAN-2003-0101}
1500 - webmin 1.070-1
1501 [12 Jun 2003] DSA-318 lyskom-server - denial of service
1502 {CAN-2003-0366}
1503 - lyskom-server 2.0.7-2
1504 [11 Jun 2003] DSA-317 cupsys - denial of service
1505 {CAN-2003-0195}
1506 - cupsys 1.1.19final-1
1507 [11 Jun 2003] DSA-316 nethack - buffer overflow, incorrect permissions
1508 {CAN-2003-0358 CAN-2003-0359}
1509 - nethack 3.4.1-1
1510 - slashem 0.0.6E4F8-6
1511 - jnethack 1.1.5-15
1512 NOTE: DSA contains some strange non-nethack version numbers
1513 [11 Jun 2003] DSA-315 gnocatan - buffer overflows, denial of service
1514 {CAN-2003-0433}
1515 HELP: no mention of any security fixes in debian changelog,
1516 HELP: upstream changelog. Mailed maintainer.
1517 [11 Jun 2003] DSA-314 atftp - buffer overflow
1518 {CAN-2003-0380}
1519 - atftp 0.6.2
1520 [11 Jun 2003] DSA-313 ethereal - buffer overflows, integer overflows
1521 {CAN-2003-0356 CAN-2003-0357}
1522 - ethereal 0.9.12-1
1523 [09 Jun 2003] DSA-312 kernel-patch-2.4.18-powerpc - several vulnerabilities
1524 {CVE-2002-0429 CAN-2003-0001 CAN-2003-0127 CAN-2003-0244 CAN-2003-0246 CAN-2003-0247 CAN-2003-0248}
1525 NOTE: not in unstable/testing. Did not check other versions.
1526 [08 Jun 2003] DSA-311 linux-kernel-2.4.18 - several vulnerabilities
1527 {CVE-2002-0429 CAN-2003-0001 CAN-2003-0127 CAN-2003-0244 CAN-2003-0246 CAN-2003-0247 CAN-2003-0248 CAN-2003-0364}
1528 NOTE: not in unstable/testing. Did not check other versions.
1529 [08 Jun 2003] DSA-310 xaos - improper setuid-root execution
1530 {CAN-2003-0385}
1531 - xaos 3.1r-4
1532 [06 Jun 2003] DSA-309 eterm - buffer overflow
1533 {CAN-2003-0382}
1534 - eterm 0.9.2-1
1535 [06 Jun 2003] DSA-308 gzip - insecure temporary files
1536 {CVE-1999-1332 CAN-2003-0367}
1537 - gzip 1.3.5-6
1538 [27 May 2003] DSA-307 gps - multiple vulnerabilities
1539 {CAN-2003-0361 CAN-2003-0360 CAN-2003-0362}
1540 - gps 1.1.0-1
1541 [19 May 2003] DSA-306 ircii-pana - buffer overflows, integer overflow
1542 {CAN-2003-0321 CAN-2003-0322 CAN-2003-0328}
1543 - ircii-pana 1:1.0-0c19-8
1544 [15 May 2003] DSA-305 sendmail - insecure temporary files
1545 {CAN-2003-0308}
1546 - sendmail 8.12.9-2
1547 [15 May 2003] DSA-304 lv - privilege escalation
1548 {CAN-2003-0188}
1549 - lv 4.49.5-2
1550 [15 May 2003] DSA-303 mysql - privilege escalation
1551 {CAN-2003-0073}
1552 - mysql-dfsg 4.0.12-2
1553 {CAN-2003-0150}
1554 HELP: not sure if this is fixed
1555 [07 May 2003] DSA-302 fuzz - privilege escalation
1556 {CAN-2003-0261}
1557 - fuzz 0.6-7.1
1558 [07 May 2003] DSA-301 libgtop - buffer overflow
1559 {CAN-2001-0928}
1560 - libgtop 1.0.13-4
1561 [06 May 2003] DSA-300 balsa - buffer overflow
1562 {CAN-2003-0167}
1563 - balse 2.0.10
1564 [06 May 2003] DSA-299 leksbot - improper setuid-root execution
1565 {CAN-2003-0262}
1566 - lexbot 1.2-5
1567 [02 May 2003] DSA-298 epic4 - buffer overflows
1568 {CAN-2003-0323}
1569 - epic4 1:1.1.11.20030409-1
1570 [01 May 2003] DSA-297 snort - integer overflow, buffer overflow
1571 {CAN-2003-0033 CAN-2003-0209}
1572 - snort 2.0.0-1
1573 [30 Apr 2003] DSA-296 kdebase - insecure execution
1574 {CAN-2003-0204}
1575 - kdebase 4:3.1.0-1
1576 [30 Apr 2003] DSA-295 pptpd - buffer overflow
1577 {CAN-2003-0213}
1578 - pptpd 1.1.4-0.b3.2
1579 [23 Apr 2003] DSA-294 gkrellm-newsticker - missing quoting, incomplete parser
1580 {CAN-2003-0205 CAN-2003-0206}
1581 NOTE: not in unstable/testing
1582 [23 Apr 2003] DSA-293 kdelibs - insecure execution
1583 {CAN-2003-0204}
1584 - kdebase 4:3.1.0-1
1585 [22 Apr 2003] DSA-292 mime-support - insecure temporary file creation
1586 {CAN-2003-0214}
1587 - mime-support 3.23-1
1588 [22 Apr 2003] DSA-291 ircii - buffer overflows
1589 {CAN-2003-0323}
1590 - ircii 20030315-1
1591 [17 Apr 2003] DSA-290 sendmail-wide - char-to-int conversion
1592 {CAN-2003-0161}
1593 - sendmail-wide 8.12.9+3.5Wbeta-1
1594 [17 Apr 2003] DSA-289 rinetd - incorrect memory resizing
1595 {CAN-2003-0212}
1596 - rinetd 0.61-2
1597 [17 Apr 2003] DSA-288 openssl - several vulnerabilities
1598 {CAN-2003-0147 CAN-2003-0131}
1599 - openssl 0.9.7b-1
1600 - openssl096 0.9.6j-1
1601 [15 Apr 2003] DSA-287 epic - buffer overflows
1602 {CAN-2003-0324}
1603 - epic4 1:1.1.11.20030409-1
1604 [14 Apr 2003] DSA-286 gs-common - insecure temporary file
1605 {CAN-2003-0207}
1606 - gs-common 0.3.3.1
1607 [14 Apr 2003] DSA-285 lprng - insecure temporary file
1608 {CAN-2003-0136}
1609 - lprng 3.8.20-4.
1610 [12 Apr 2003] DSA-284 kdegraphics - insecure execution
1611 {CAN-2003-0204}
1612 - kdegraphics 4:3.1.0-1
1613 [11 Apr 2003] DSA-283 xfsdump - insecure file creation
1614 {CAN-2003-0173}
1615 - xfsdump 2.2.8-1
1616 [09 Apr 2003] DSA-282 glibc - integer overflow
1617 {CAN-2003-0028}
1618 - glibc 2.3.1-16
1619 [08 Apr 2003] DSA-281 moxftp - buffer overflow
1620 {CAN-2003-0203}
1621 - moxftp 2.2-18.20
1622 [07 Apr 2003] DSA-280 samba - buffer overflow
1623 {CAN-2003-0201 CAN-2003-0196}
1624 - samba 3.0
1625 [07 Apr 2003] DSA-279 metrics - insecure temporary file creation
1626 {CAN-2003-0202}
1627 NOTE: note in unstable/testing
1628 [04 Apr 2003] DSA-278 sendmail - char-to-int conversion
1629 {CAN-2003-0161}
1630 - sendmail 8.12.9-1
1631 [03 Apr 2003] DSA-277 apcupsd - buffer overflows, format string
1632 {CAN-2003-0098 CAN-2003-0099}
1633 - apcupsd 3.8.5-1.2
1634 [03 Apr 2003] DSA-276 linux-kernel-s390 - local privilege escalation
1635 {CAN-2003-0127}
1636 NOTE: this version is not in sarge, did not check others
1637 [02 Apr 2003] DSA-275 lpr-ppd - buffer overflow
1638 {CAN-2003-0144}
1639 - lpr-ppd 1:0.72-3
1640 [28 Mar 2003] DSA-274 mutt - buffer overflow
1641 {CAN-2003-0167}
1642 - mutt 1.4.0
1643 [28 Mar 2003] DSA-273 krb4 - Cryptographic weakness
1644 {CAN-2003-0138 CAN-2003-0139}
1645 - krb4 1.2.2-1
1646 [28 Mar 2003] DSA-272 dietlibc - integer overflow
1647 {CAN-2003-0028}
1648 - dietlibc 0.22-2
1649 [27 Mar 2003] DSA-271 ecartis - unauthorized password change
1650 {CAN-2003-0162}
1651 - ecartis 1.0.0+cvs.20030321-1
1652 [27 Mar 2003] DSA-270 linux-kernel-mips - local privilege escalation
1653 {CAN-2003-0127}
1654 NOTE: not in unstable/testing, did not check other versions
1655 [26 Mar 2003] DSA-269 heimdal - Cryptographic weakness
1656 {CAN-2003-0138}
1657 - heimdal 0.5.2-1
1658 [25 Mar 2003] DSA-268 mutt - buffer overflow
1659 {CAN-2003-0140}
1660 - mutt 1.5.4-1
1661 [24 Mar 2003] DSA-267 lpr - buffer overflow
1662 {CAN-2003-0144}
1663 - lpr 1:2000.05.07-4.20
1664 [24 Mar 2003] DSA-266 krb5 - several vulnerabilities
1665 {CAN-2003-0028}
1666 - krb5 1.3.3-2
1667 NOTE: changelog does not mention this one, verified patch from
1668 NOTE: Tom Yu was applied to this version.
1669 {CAN-2003-0072}
1670 - krb5 1.2.7-3
1671 NOTE: changelog does not mention this one, verified patch from
1672 NOTE: upstream was applied to this version.
1673 {CAN-2003-0082}
1674 - krb5 1.3.3-2
1675 {CAN-2003-0138 VU#623217}
1676 - krb5 1.2.7-3
1677 {CAN-2003-0139 VU#442569}
1678 - krb5 1.2.7-3
1679 [21 Mar 2003] DSA-265 bonsai - several vulnerabilities
1680 {CAN-2003-0152 CAN-2003-0153 CAN-2003-0154 CAN-2003-0155}
1681 - bonsai 1.3+cvs20030317-1
1682 [19 Mar 2003] DSA-264 lxr - missing filename sanitizing
1683 {CAN-2003-0156}
1684 - lxr 0.3-4
1685 [17 Mar 2003] DSA-263 netpbm-free - math overflow errors
1686 {CAN-2003-0146}
1687 - netpbm-free 2:9.20-9
1688 [15 Mar 2003] DSA-262 samba - remote exploit
1689 {CAN-2003-0085 CAN-2003-0086}
1690 - samba 2.2.8
1691 [14 Mar 2003] DSA-261 tcpdump - infinite loop
1692 {CAN-2003-0093 CAN-2003-0145}
1693 NOTE: DSA reports sid was not affected, sarge has sid version
1694 [13 Mar 2003] DSA-260 file - buffer overflow
1695 {CAN-2003-0102}
1696 - file 3.40-1.1
1697 [12 Mar 2003] DSA-259 qpopper - mail user privilege escalation
1698 {CAN-2003-0143}
1699 - qpopper 4.0.4-9
1700 [10 Mar 2003] DSA-258 ethereal - format string vulnerability
1701 {CAN-2003-0081}
1702 - ethereal 0.9.9-2
1703 [04 Mar 2003] DSA-257 sendmail - remote exploit
1704 {CAN-2002-1337}
1705 - sendmail 8.12.8
1706 [28 Feb 2003] DSA-256 mhc - insecure temporary file
1707 {CAN-2003-0120}
1708 - mhc 0.25+20030224-1
1709 [27 Feb 2003] DSA-255 tcpdump - infinite loop
1710 {CAN-2003-0108 CAN-2002-0380}
1711 - tcpdump 3.7.1-1.2
1712 [27 Feb 2003] DSA-254 traceroute-nanog - buffer overflow
1713 {CAN-2002-1051 CAN-2002-1364 CAN-2002-1386 CAN-2002-1387}
1714 - traceroute-nanog 6.3.0-1
1715 [24 Feb 2003] DSA-253 openssl - information leak
1716 {CAN-2003-0078}
1717 - openssl 0.9.7a-1
1718 [21 Feb 2003] DSA-252 slocate - buffer overflow
1719 {CAN-2003-0056}
1720 - slocate 2.7-1
1721 [14 Feb 2003] DSA-251 w3m - missing HTML quoting
1722 {CAN-2002-1335 CAN-2002-1348}
1723 - w3m 0.3.2.2-1
1724 [12 Feb 2003] DSA-250 w3mmee-ssl - missing HTML quoting
1725 {CAN-2002-1335 CAN-2002-1348}
1726 NOTE: not in sid/sarge
1727 [11 Feb 2003] DSA-249 w3mmee - missing HTML quoting
1728 {CAN-2002-1335 CAN-2002-1348}
1729 - w3mmee 0.3.p24.17-3
1730 [31 Jan 2003] DSA-248 hypermail - buffer overflows
1731 {CAN-2003-0057}
1732 - hypermail 2.1.6-1
1733 [30 Jan 2003] DSA-247 courier-ssl - missing input sanitizing
1734 {CAN-2003-0040}
1735 - courier 0.40.2-3
1736 [29 Jan 2003] DSA-246 tomcat - information exposure, cross site scripting
1737 {CAN-2003-0042 CAN-2003-0043 CAN-2003-0044}
1738 NOTE: tomcat not in sid/sarge
1739 NOTE: tomcat4 not affected
1740 [28 Jan 2003] DSA-245 dhcp3 - ignored counter boundary
1741 {CAN-2003-0039}
1742 - dhcp3 1.1.2-1
1743 [27 Jan 2003] DSA-244 noffle - buffer overflows
1744 {CAN-2003-0037}
1745 - noffle 1.1.2-1
1746 [24 Jan 2003] DSA-243 kdemultimedia - several vulnerabilities
1747 {CAN-2002-1393}
1748 - kdemultimedia 4:3.1
1749 [24 Jan 2003] DSA-242 kdebase - several vulnerabilities
1750 {CAN-2002-1393}
1751 - kdebase 4:3.1
1752 [24 Jan 2003] DSA-241 kdeutils - several vulnerabilities
1753 {CAN-2002-1393}
1754 - kdeutils 4:3.1
1755 [23 Jan 2003] DSA-240 kdegames - several vulnerabilities
1756 {CAN-2002-1393}
1757 - kdegames 4:3.1
1758 [23 Jan 2003] DSA-239 kdesdk - several vulnerabilities
1759 {CAN-2002-1393}
1760 - kdesdk 4:3.1
1761 [23 Jan 2003] DSA-238 kdepim - several vulnerabilities
1762 {CAN-2002-1393}
1763 - kdepim 4:3.1
1764 [22 Jan 2003] DSA-237 kdenetwork - several vulnerabilities
1765 {CAN-2002-1393}
1766 - kdenetwork 4:3.1
1767 [22 Jan 2003] DSA-236 kdelibs - several vulnerabilities
1768 {CAN-2002-1393}
1769 - kdelibs 4:3.1
1770 [22 Jan 2003] DSA-235 kdegraphics - several vulnerabilities
1771 {CAN-2002-1393}
1772 - kdegraphics 4:3.1
1773 [22 Jan 2003] DSA-234 kdeadmin - several vulnerabilities
1774 {CAN-2002-1393}
1775 - kdeadmin 4:3.1
1776 [21 Jan 2003] DSA-233 cvs - doubly freed memory
1777 {CAN-2003-0015}
1778 - cvs 1.11.2-5.1
1779 [20 Jan 2003] DSA-232 cupsys - several vulnerabilities
1780 {CAN-2002-1366 CAN-2002-1367 CAN-2002-1368 CAN-2002-1369 CAN-2002-1371 CAN-2002-1372 CAN-2002-1383 CAN-2002-1384}
1781 - cupsys 1.1.18-1
1782 [17 Jan 2003] DSA-231 dhcp3 - stack overflows
1783 {CAN-2003-0026}
1784 - dhcp3 3.0+3.0.1rc11-1
1785 [16 Jan 2003] DSA-230 bugzilla - insecure permissions, spurious backup files
1786 NOTE: not in testing due to 3 newer security holes
1787 {CAN-2003-0012}
1788 - bugzilla 2.16.2
1789 {CAN-2003-0013}
1790 - bugzilla 2.16.2
1791 [15 Jan 2003] DSA-229 imp - SQL injection
1792 {CAN-2003-0025}
1793 NOTE: I think imp3 is ok.
1794 [14 Jan 2003] DSA-228 libmcrypt - buffer overflows and memory leak
1795 {CAN-2003-0031 CAN-2003-0032}
1796 - libmcrypt 2.5.5-1
1797 [13 Jan 2003] DSA-227 openldap2 - buffer overflows and other bugs
1798 {CAN-2002-1378 CAN-2002-1379 CAN-2002-1508}
1799 - openldap2 2.0.27-3
1800 [10 Jan 2003] DSA-226 xpdf-i - integer overflow
1801 {CAN-2002-1384}
1802 - xpdf 2.01-2
1803 [09 Jan 2003] DSA-225 tomcat4 - source disclosure
1804 {CAN-2002-1394}
1805 ! tomcat4 4.1.16-1
1806 NOTE another RC (unreproducible?) bug and missing deps (#263201)
1807 NOTE are keeping the fix out of testing
1808 NOTE this is the second unfixed security hole in tomcat4 in testing..
1809 [08 Jan 2003] DSA-224 canna - buffer overflow and more
1810 {CAN-2002-1158 CAN-2002-1159}
1811 - canna 3.6p1-1
1812 [07 Jan 2003] DSA-223 geneweb - information exposure
1813 {CAN-2002-1390}
1814 - geneweb 4.09-1
1815 [06 Jan 2003] DSA-222 xpdf - integer overflow
1816 {CAN-2002-1384}
1817 - xpdf 2.01-2
1818 [03 Jan 2003] DSA-221 mhonarc - cross site scripting
1819 {CAN-2002-1388}
1820 - mhonarc 2.5.14-1
1821 [02 Jan 2003] DSA-220 squirrelmail - cross site scripting
1822 {CAN-2002-1341}
1823 - squirrelmail 1:1.3.2-2
1824
1825 ------- These processed by Djoumé SALVETTI <salvetti@crans.org> -----
1826
1827 [31 Dec 2002] DSA-219 dhcpcd - remote command execution
1828 {CAN-2002-1403}
1829 - dhcpcd 1.3.22pl2-2
1830 [30 Dec 2002] DSA-218 bugzilla - cross site scripting
1831 NOTE: not in testing, fixed in unstable (bugzilla 2.16.2-1).
1832 [27 Dec 2002] DSA-217 typespeed - buffer overflow
1833 {CAN-2002-1389}
1834 - typespeed 0.4.2-2
1835 [24 Dec 2002] DSA-216 fetchmail - buffer overflow
1836 {CAN-2002-1365}
1837 - fetchmail 6.2.0-1
1838 [23 Dec 2002] DSA-215 cyrus-imapd - buffer overflow
1839 {CAN-2002-1580}
1840 - cyrus-imapd 1.5.19-9.10
1841 [20 Dec 2002] DSA-214 kdnetwork - buffer overflows
1842 {CAN-2002-1306}
1843 - kdenetwork 2.2.2-14.20
1844 NOTE: there is a typo in the DSA, the name of the package is kdenetwork.
1845 [19 Dec 2002] DSA-213 libpng - buffer overflow
1846 {CAN-2002-1363}
1847 - libpng 1.0.12-7
1848 - libpng3 1.2.5-8
1849 [17 Dec 2002] DSA-212 mysql - multiple problems
1850 {CAN-2002-1373 CAN-2002-1374 CAN-2002-1375 CAN-2002-1376}
1851 - mysql-dfsg 4.0.7.gamma-1
1852 [13 Dec 2002] DSA-211 micq - denial of service
1853 {CAN-2002-1362}
1854 NOTE: not in testing nor unstable (was fixed in 0.4.9.4-1)
1855 [13 Dec 2002] DSA-210 lynx - CRLF injection
1856 {CAN-2002-1405}
1857 - lynx 2.8.4.1b-4
1858 NOTE: lynx-ssl not in testing nor unstable.
1859 [12 Dec 2002] DSA-209 wget - directory traversal
1860 {CAN-2002-1344}
1861 - wget 1.8.2-8
1862 [12 Dec 2002] DSA-208 perl - broken safe compartment
1863 {CAN-2002-1323}
1864 - perl 5.8.0-14
1865 [11 Dec 2002] DSA-207 tetex-bin - arbitrary command execution
1866 {CAN-2002-0836}
1867 - tetex-bin 1.0.7+20021025-4
1868 [10 Dec 2002] DSA-206 tcpdump - denial of service
1869 {CAN-2002-1350}
1870 - tcpdump 3.7.2-1
1871 [10 Dec 2002] DSA-205 gtetrinet - buffer overflow
1872 - gtetrinet 0.4.4-1
1873 NOTE: no CAN not CVE for this one
1874 [05 Dec 2002] DSA-204 kdelibs - arbitrary program execution
1875 {CAN-2002-1281 CAN-2002-1282}
1876 - kdelibs 4:3.1.0-1
1877 [04 Dec 2002] DSA-203 smb2www - arbitrary command execution
1878 {CAN-2002-1342}
1879 - smb2www 980804-17
1880 [03 Dec 2002] DSA-202 im - insecure temporary files
1881 {CAN-2002-1395}
1882 - im 141-20
1883 [02 Dec 2002] DSA-201 freeswan - denial of service
1884 {CAN-2002-0666 VU#459371}
1885 - freeswan 1.99-1
1886 [22 Nov 2002] DSA-200 samba - remote exploit
1887 {CAN-2002-1318}
1888 - samba 2.99.cvs.20020713-1
1889 [19 Nov 2002] DSA-199 mhonarc - cross site scripting
1890 {CAN-2002-1307}
1891 - mhonarc 2.5.13-1
1892 [18 Nov 2002] DSA-198 nullmailer - denial of service
1893 {CAN-2002-1313}
1894 - nullmailer 1.00RC5-17
1895 [15 Nov 2002] DSA-197 courier - buffer overflow
1896 {CAN-2002-1311}
1897 - courier 0.40.0-1
1898 [14 Nov 2002] DSA-196 bind - several vulnerabilities
1899 {CAN-2002-0029 CAN-2002-1219 CAN-2002-1220 CAN-2002-1221}
1900 - bind 8.3.3-3
1901 [13 Nov 2002] DSA-195 apache-perl - several vulnerabilities
1902 {CAN-2002-0839 CAN-2002-0840 CAN-2002-0843 CAN-2001-0131 CAN-2002-1233}
1903 - apache-perl 1.3.26-1.1-1.27-3-1
1904 [12 Nov 2002] DSA-194 masqmail - buffer overflows
1905 {CAN-2002-1279}
1906 - masqmail 0.2.15-1
1907 [11 Nov 2002] DSA-193 kdenetwork - buffer overflow
1908 {CAN-2002-1247}
1909 - kdenetwok 2.2.2-14.3
1910 [08 Nov 2002] DSA-192 html2ps - arbitrary code execution
1911 {CAN-2002-1275}
1912 - html2ps 1.0b3-2
1913 [07 Nov 2002] DSA-191 squirrelmail - cross site scripting
1914 {CAN-2002-1131 CAN-2002-1132 CAN-2002-1276}
1915 - squirrelmail 1.2.8-1.1
1916 [07 Nov 2002] DSA-190 wmaker - buffer overflow
1917 {CAN-2002-1277}
1918 - wmaker 0.80.1-4
1919 [06 Nov 2002] DSA-189 luxman - local root exploit
1920 {CAN-2002-1245}
1921 - luxman 0.41-19
1922 [05 Nov 2002] DSA-188 apache-ssl - several vulnerabilities
1923 {CAN-2002-0839 CAN-2002-0840 CAN-2002-0843}
1924 - apache 1.3.27-0.1
1925 {CAN-2001-0131 CAN-2002-1233}
1926 - apache 1.3.27-1
1927 HELP: note sure about this
1928 NOTE: I have mailed maintainers
1929 {NO-CAN Several buffer overflows in ApacheBench}
1930 HELP: I don't know about this
1931 NOTE: I have mailed maintainers
1932 [04 Nov 2002] DSA-187 apache - several vulnerabilities
1933 {CAN-2002-0839 CAN-2002-0840 CAN-2002-0843}
1934 - apache 1.3.27-0.1
1935 {CAN-2001-0131 CAN-2002-1233}
1936 - apache 1.3.27-1
1937 HELP: note sure about this
1938 NOTE: I have mailed maintainers
1939 {NO-CAN Several buffer overflows in ApacheBench}
1940 HELP: I don't know about this
1941 NOTE: I have mailed maintainers
1942 [01 Nov 2002] DSA-186 log2mail - buffer overflow
1943 {CAN-2002-1251}
1944 - log2mail 0.2.6-1
1945 [31 Oct 2002] DSA-185 heimdal - buffer overflow
1946 {CAN-2002-1235}
1947 - heimdal 0.4e-22
1948 [30 Oct 2002] DSA-184 krb4 - buffer overflow
1949 {CAN-2002-1235}
1950 - krb4 1.1-11-8
1951 [29 Oct 2002] DSA-183 krb5 - buffer overflow
1952 {CAN-2002-1235}
1953 - krb5 1.2.6-2
1954 [28 Oct 2002] DSA-182 kdegraphics - buffer overflow
1955 {CAN-2002-0838}
1956 - kdegraphics 2.2.2-6.9
1957 [22 Oct 2002] DSA-181 libapache-mod-ssl - cross site scripting
1958 {CAN-2002-1157}
1959 - libapache-mod-ssl 2.8.9-2.3
1960 [21 Oct 2002] DSA-180 nis - information leak
1961 {CAN-2002-1232}
1962 - nis 3.9-6.2
1963 [18 Oct 2002] DSA-179 gnome-gv - buffer overflow
1964 {CAN-2002-0838}
1965 - gnome-gv 1.99.7-9
1966 [17 Oct 2002] DSA-178 heimdal - remote command execution
1967 {CAN-2002-1225 CAN-2002-1226}
1968 - heimdal 0.4e-21
1969 [17 Oct 2002] DSA-177 pam - serious security violation
1970 {CAN-2002-1227}
1971 - pam 0.76-6
1972 [16 Oct 2002] DSA-176 gv - buffer overflow
1973 {CAN-2002-0838}
1974 - gv 3.5.8-27
1975 [15 Oct 2002] DSA-175 syslog-ng - buffer overflow
1976 {CAN-2002-1200}
1977 - syslog-ng 1.5.21-1
1978 [14 Oct 2002] DSA-174 heartbeat - buffer overflow
1979 {CAN-2002-1215}
1980 - heartbeat 0.4.9.2-1
1981 [09 Oct 2002] DSA-173 bugzilla - privilege escalation
1982 {CAN-2002-1196}
1983 NOTE: not in testing, fixed in unstable (bugzilla 2.16.0-2.1)
1984 [08 Oct 2002] DSA-172 tkmail - insecure temporary files
1985 {CAN-2002-1193}
1986 NOTE: not in testing nor unstable (was fixed in 4.0beta9-9)
1987 [07 Oct 2002] DSA-171 fetchmail - buffer overflows
1988 {CAN-2002-1175 CAN-2002-1174}
1989 - fetchmail 6.1.0-1
1990 NOTE: fetchmail-ssl not in testing, fixed in unstable (fetchmail-ssl 6.1.0-1)
1991 [04 Oct 2002] DSA-170 tomcat4 - source code disclosure
1992 {CAN-2002-1148}
1993 ! tomcat4 4.1.12-1
1994 NOTE: only 4.0.4-4 in testing (which seems to be vulnerable)
1995 [25 Sep 2002] DSA-169 htcheck - cross site scripting
1996 {CAN-2002-1195}
1997 - htcheck 1.1-1.2
1998 [18 Sep 2002] DSA-168 php - bypassing safe_mode, CRLF injection
1999 {CAN-2002-0985 CAN-2002-0986}
2000 - php3 3.0.18-23.2
2001 - php4 4.2.3-3
2002 NOTE: php3 is not in testing, it seems to be wait for tiff and gcc transition
2003 NOTE: and is out of date on alpha and arm
2004 [16 Sep 2002] DSA-167 kdelibs - cross site scripting
2005 {CAN-2002-1151}
2006 - kdelibs 2.2.2-14
2007 NOTE: there is a typo in the DSA that mentionned Konquerer instead of kdelibs
2008 [13 Sep 2002] DSA-166 purity - buffer overflows
2009 {CAN-2002-1124}
2010 - purity 1-16
2011 [12 Sep 2002] DSA-165 postgresql - buffer overflows
2012 {CAN-2002-0972 CAN-2002-1398 CAN-2002-1400 CAN-2002-1401 CVE-2002-1402}
2013 - postgresql 7.2.2-2
2014 [10 Sep 2002] DSA-164 cacti - arbitrary code execution
2015 {CAN-2002-1477 CAN-2002-1478}
2016 - cacti 0.6.8a-2
2017 [09 Sep 2002] DSA-163 mhonarc - cross site scripting
2018 {CVE-2002-0738}
2019 - mhonarc 2.5.11-1
2020 [06 Sep 2002] DSA-162 ethereal - buffer overflow
2021 {CAN-2002-0834}
2022 - ethereal 0.9.6-1
2023 [04 Sep 2002] DSA-161 mantis - privilege escalation
2024 {CAN-2002-1115 CAN-2002-1116}
2025 - mantis 0.17.5-2
2026 [03 Sep 2002] DSA-160 scrollkeeper - insecure temporary file creation
2027 {CAN-2002-0662}
2028 - scrollkeeper 0.3.11-2
2029 [28 Aug 2002] DSA-159 python - insecure temporary files
2030 {CAN-2002-1119}
2031 - python2.1 2.1.3-6a
2032 - python2.2 2.2.1-8
2033 NOTE: python1.5 not in testing nor unstable (was fixed in 1.5.2-24)
2034 NOTE: python2.3 is not vulnerable
2035 [27 Aug 2002] DSA-158 gaim - arbitrary program execution
2036 {CVE-2002-0989}
2037 - gaim 0.59.1-2
2038 [23 Aug 2002] DSA-157 irssi-text - denial of service
2039 {CAN-2002-0983}
2040 - irssi-text 0.8.5-2
2041 [22 Aug 2002] DSA-156 epic4-script-light - arbitrary script execution
2042 {CVE-2002-0984}
2043 - epic4-script-light 2.7.30p5-2
2044 [17 Aug 2002] DSA-155 kdelibs - privacy escalation with Konqueror
2045 {CAN-2002-0970}
2046 - kdelibs 4:2.2.2-14
2047 [15 Aug 2002] DSA-154 fam - privilege escalation
2048 {CVE-2002-0875}
2049 - fam 2.6.8-1
2050 [14 Aug 2002] DSA-153 mantis - cross site code execution and privilege escalation
2051 {CAN-2002-1114 CAN-2002-1113 CAN-2002-1112 CAN-2002-1111 CAN-2002-1110}
2052 - mantis 0.17.4a-2
2053 [13 Aug 2002] DSA-152 l2tpd - missing random seed
2054 {CVE-2002-0872 CVE-2002-0873}
2055 NOTE: not in testing (was fixed in unstable 0.68-1)
2056 [13 Aug 2002] DSA-151 xinetd - pipe exposure
2057 {CVE-2002-0871}
2058 - xinetd 2.3.7-1
2059 [13 Aug 2002] DSA-150 interchange - illegal file exposition
2060 {CAN-2002-0874}
2061 - interchange 4.8.6-1
2062 [13 Aug 2002] DSA-149 glibc - integer overflow
2063 {CVE-2002-0391}
2064 - glibc 2.2.5-13
2065 [12 Aug 2002] DSA-148 hylafax - buffer overflows and format string vulnerabilities
2066 {CVE-2002-1049 CVE-2002-1050 CAN-2001-1034}
2067 - hylafax 4.1.2-2.1
2068 [08 Aug 2002] DSA-147 mailman - cross-site scripting
2069 {CAN-2002-0388 CAN-2002-0855}
2070 - mailman 2.0.12-1
2071 [08 Aug 2002] DSA-146 dietlibc - integer overflow
2072 {CVE-2002-0391}
2073 - dietlibc 0.20-0cvs20020808
2074 [07 Aug 2002] DSA-145 tinyproxy - doubly freed memory
2075 {CVE-2002-0847}
2076 - tinyproxy 1.4.3-3
2077 [06 Aug 2002] DSA-144 wwwoffle - improper input handling
2078 {CVE-2002-0818}
2079 - wwwoffle 2.7d-1
2080 [05 Aug 2002] DSA-143 krb5 - integer overflow
2081 {CVE-2002-0391}
2082 - krb5 1.2.5-2
2083 [05 Aug 2002] DSA-142 openafs - integer overflow
2084 {CVE-2002-0391}
2085 - openafs 1.2.6-1
2086 [01 Aug 2002] DSA-141 mpack - buffer overflow
2087 {CAN-2002-1425}
2088 - mpack 1.5-9
2089 [05 Aug 2002] DSA-140 libpng - buffer overflow
2090 {CAN-2002-0660 CAN-2002-0728}
2091 - libpng 1.0.12-4
2092 - libpng3 1.2.1-2
2093 [01 Aug 2002] DSA-139 super - format string vulnerability
2094 {CVE-2002-0817}
2095 - super 3.18.0-3
2096 [01 Aug 2002] DSA-138 gallery - remote exploit
2097 {CAN-2002-1412}
2098 - gallery 1.3-3
2099 [30 Jul 2002] DSA-137 mm - insecure temporary files
2100 {CVE-2002-0658}
2101 - mm 1.1.3-7
2102 [30 Jul 2002] DSA-136 openssl - multiple remote exploits
2103 {CAN-2002-0655 CAN-2002-0656 CAN-2002-0657 CAN-2002-0659}
2104 - openssl 0.9.6e-1
  ViewVC Help
Powered by ViewVC 1.1.5