CAN-2004-1052 NOTE: bnc is not in sarge or unstable (is in woody) CAN-2004-1051 - sudo 1.6.8p3-1 CAN-2004-1050 NOTE: not-for-us (Microsoft) CAN-2004-1049 NOTE: reserved CAN-2004-1048 NOTE: reserved CAN-2004-1047 NOTE: reserved CAN-2004-1046 NOTE: reserved CAN-2004-1045 NOTE: reserved CAN-2004-1044 NOTE: reserved CAN-2004-1043 NOTE: reserved CAN-2004-1042 NOTE: reserved CAN-2004-1041 NOTE: reserved CAN-2004-1040 NOTE: reserved CAN-2004-1039 NOTE: reserved CAN-2004-1038 NOTE: not-for-us (IEEE1394 specification bug, physical security) CAN-2004-1037 NOTE: reserved CAN-2004-1036 - squirrelmail 2:1.4.3a-3 CAN-2004-1035 - imapproxy 1.2.2+1.2.3rc2-1 CAN-2004-1034 - kaffeine 0.4.3.1-3 - gxine (unfixed; bug #279747) CAN-2004-1033 NOTE: bugtraq 1CE07882ECEE894CA2D5A89B8DEBC4010A2DD3@porgy.admin.idefense.com - fcron 2.9.5.1 (unfixed; bug #281436) CAN-2004-1032 NOTE: bugtraq 1CE07882ECEE894CA2D5A89B8DEBC4010A2DD3@porgy.admin.idefense.com - fcron 2.9.5.1 (unfixed; bug #281436) CAN-2004-1031 NOTE: bugtraq 1CE07882ECEE894CA2D5A89B8DEBC4010A2DD3@porgy.admin.idefense.com - fcron 2.9.5.1 (unfixed; bug #281436) CAN-2004-1030 NOTE: bugtraq 1CE07882ECEE894CA2D5A89B8DEBC4010A2DD3@porgy.admin.idefense.com - fcron 2.9.5.1 (unfixed; bug #281436) CAN-2004-1029 NOTE: reserved CAN-2004-1028 NOTE: reserved CAN-2004-1027 NOTE: sarge's unarj is from a different code base, probably not vulnerable CAN-2004-1026 NOTE: reserved CAN-2004-1025 NOTE: reserved CAN-2004-1024 NOTE: reserved CAN-2004-1023 NOTE: reserved CAN-2004-1022 NOTE: reserved CAN-2004-1021 NOTE: reserved CAN-2004-1020 NOTE: reserved CAN-2004-1019 NOTE: reserved CAN-2004-1018 NOTE: reserved CAN-2004-1017 NOTE: reserved CAN-2004-1016 NOTE: reserved CAN-2004-1015 NOTE: reserved CAN-2004-1014 NOTE: reserved CAN-2004-1013 NOTE: reserved CAN-2004-1012 NOTE: reserved CAN-2004-1011 NOTE: reserved CAN-2004-1010 - zip 2.30-7 CAN-2004-1009 NOTE: reserved CAN-2004-1008 NOTE: reserved CAN-2004-1007 - bogofilter 0.92.8-1 CAN-2004-1006 NOTE: reserved NOTE: covered by DSA-584-1 - dhcp 2.0pl5-19.1 CAN-2004-1005 NOTE: reserved CAN-2004-1004 NOTE: reserved CAN-2004-1003 NOTE: not-for-us (Trend ScanMail) CAN-2004-1002 - ppp 2.4.2+20040428-3 CAN-2004-1001 - shadow 1:4.0.3-30.3 CAN-2004-1000 NOTE: reserved CAN-2004-0999 NOTE: reserved CAN-2004-0998 NOTE: reserved CAN-2004-0997 NOTE: reserved CAN-2004-0996 NOTE: reserved CAN-2004-0995 NOTE: reserved CAN-2004-0994 NOTE: reserved CAN-2004-0993 NOTE: reserved CAN-2004-0992 NOTE: reserved CAN-2004-0991 NOTE: reserved CAN-2004-0990 NOTE: covered by DSA-589-1 NOTE: covered by DSA-591-1 CAN-2004-0989 NOTE: covered by DSA-582-1 CAN-2004-0988 NOTE: not-for-us (Apple) CAN-2004-0987 NOTE: reserved CAN-2004-0986 NOTE: reserved - iptables 1.2.11-4 CAN-2004-0985 NOTE: not-for-us (windows) CAN-2004-0984 NOTE: reserved - mailutils 1:0.5-4 CAN-2004-0983 NOTE: reserved - ruby1.8 1.8.1+1.8.2pre2-4 - ruby1.6 1.6.8-12 CAN-2004-0982 NOTE: reserved - mpg123 0.59r-17 CAN-2004-0981 NOTE: reserved - imagemagick 6:6.0.6.2-1.5 NOTE: covered by DSA-593-1 CAN-2004-0980 NOTE: reserved - ez-ipupdate 3.0.11b8-8 CAN-2004-0979 NOTE: not-for-us (windows) CAN-2004-0978 NOTE: not-for-us (windows) CAN-2004-0977 - postgresql 7.4.6-1 CAN-2004-0976 - perl 5.8.4-4 CAN-2004-0975 - openssl 0.9.7e-1 NOTE: also includes other security fixes than this CAN CAN-2004-0974 [local; low] - netatalk 1.6.4a-1 CAN-2004-0973 NOTE: rejected CAN-2004-0972 NOTE: lvmcreate_initrd not in debian CAN-2004-0971 - kbr5 (unfixed; bug #278271; not shipped in binary package) - arla 0.36.2-11 CAN-2004-0970 NOTE: sarge is not vulnerable as our version uses set -C CAN-2004-0969 - groff 1.18.1.1-2 CAN-2004-0968 - libc6 (unfixed; bug #278278) CAN-2004-0967 - gs-common 0.3.6-0.1 CAN-2004-0966 - gettext 0.14.1-6 CAN-2004-0965 NOTE: reserved CAN-2004-0964 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge NOTE: DSA says zinf not vulnerable in sarge - zinf 2.2.5 CAN-2004-0963 NOTE: not-for-us (windows) CAN-2004-0962 NOTE: reserved CAN-2004-0961 - freeradius 1.0.1 CAN-2004-0960 - freeradius 1.0.1 CAN-2004-0959 - php4 4.3.9 CAN-2004-0958 - php4 4.3.9 CAN-2004-0957 - mysql-dfsg 3.23.58 - mysql 3.23.58 CAN-2004-0956 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge NOTE: reserved CAN-2004-0955 NOTE: reserved NOTE: covered by DSA-570-1 CAN-2004-0954 NOTE: rejected CAN-2004-0953 NOTE: reserved CAN-2004-0952 NOTE: reserved CAN-2004-0951 NOTE: reserved CAN-2004-0950 NOTE: reserved CAN-2004-0949 NOTE: reserved CAN-2004-0948 NOTE: reserved CAN-2004-0947 NOTE: reserved NOTE: see http://lwn.net/Alerts/110733/ NOTE: sarge's unarj is from a different code base, probably not vulnerable CAN-2004-0946 NOTE: reserved CAN-2004-0945 NOTE: reserved CAN-2004-0944 NOTE: reserved CAN-2004-0943 NOTE: reserved CAN-2004-0942 NOTE: reserved - apache2 2.0.52-2 CAN-2004-0941 NOTE: reserved CAN-2004-0940 NOTE: reserved - apache 1.3.33-2 CAN-2004-0939 NOTE: reserved CAN-2004-0938 - freeradius 1.0.1 CAN-2004-0937 NOTE: reserved CAN-2004-0936 NOTE: reserved CAN-2004-0935 NOTE: reserved CAN-2004-0934 NOTE: reserved CAN-2004-0933 NOTE: reserved CAN-2004-0932 NOTE: reserved CAN-2004-0931 NOTE: reserved CAN-2004-0930 NOTE: reserved NOTE: according to bugtraq post, this is a DOS in samba 3.0.x <= 3.0.7 NOTE: newer version in testing CAN-2004-0929 NOTE: reserved CAN-2004-0928 NOTE: reserved CAN-2004-0927 NOTE: reserved CAN-2004-0926 NOTE: reserved CAN-2004-0925 NOTE: reserved CAN-2004-0924 NOTE: reserved CAN-2004-0923 NOTE: reserved NOTE: covered by DSA-566-1 CAN-2004-0922 NOTE: reserved CAN-2004-0921 NOTE: reserved CAN-2004-0920 NOTE: not-for-us (norton) CAN-2004-0919 NOTE: reserved CAN-2004-0918 NOTE: covered by DSA-576-1 - squid 2.5.7 CAN-2004-0917 NOTE: reserved CAN-2004-0916 NOTE: reserved NOTE: covered by DSA-574-1 - cabextract 1.1-1 CAN-2004-0915 NOTE: reserved CAN-2004-0914 NOTE: reserved CAN-2004-0913 NOTE: reserved NOTE: covered by DSA-572-1 - squid 2.5.6-9 CAN-2004-0912 NOTE: reserved CAN-2004-0911 NOTE: covered by DSA-556-1 CAN-2004-0910 NOTE: rejected CAN-2004-0909 - mozilla-firefox 0.10.1+1.0PR - mozilla 1.7.3 - mozilla-thunderbird 0.8 CAN-2004-0908 - mozilla-firefox 0.10.1+1.0PR - mozilla 1.7.3 - mozilla-thunderbird 0.8 CAN-2004-0907 NOTE: not-for-us (non-debian package issue) CAN-2004-0906 - mozilla-firefox 0.10.1+1.0PR - mozilla 1.7.3 - mozilla-thunderbird 0.8 CAN-2004-0905 - mozilla-firefox 0.10.1+1.0PR - mozilla 1.7.3 - mozilla-thunderbird 0.8 CAN-2004-0904 - mozilla-firefox 0.10.1+1.0PR - mozilla 1.7.3 - mozilla-thunderbird 0.8 CAN-2004-0903 - mozilla-firefox 0.10.1+1.0PR - mozilla 1.7.3 - mozilla-thunderbird 0.8 CAN-2004-0902 - mozilla-firefox 0.10.1+1.0PR - mozilla 1.7.3 - mozilla-thunderbird 0.8 CAN-2004-0901 NOTE: reserved CAN-2004-0900 NOTE: reserved CAN-2004-0899 NOTE: reserved CAN-2004-0898 NOTE: reserved CAN-2004-0897 NOTE: reserved CAN-2004-0896 NOTE: reserved CAN-2004-0895 NOTE: reserved CAN-2004-0894 NOTE: reserved CAN-2004-0893 NOTE: reserved CAN-2004-0892 NOTE: reserved CAN-2004-0891 - gaim 1.0.2 CAN-2004-0890 NOTE: reserved CAN-2004-0889 NOTE: reserved NOTE: covered by DSA-573-1 - 3.00-10 CAN-2004-0888 NOTE: reserved NOTE: covered by DSA-573-1 - koffice 1:1.3.4-1 CAN-2004-0887 NOTE: reserved NOTE: waldi provided this info - linux-kernel-image-2.6.8-s390 CAN-2004-0886 NOTE: reserved NOTE: covered by DSA-567-1 CAN-2004-0885 - apache2 2.0.52-2 CAN-2004-0884 NOTE: covered by DSA-563-1 CAN-2004-0883 NOTE: reserved CAN-2004-0882 NOTE: reserved NOTE: details http://security.e-matters.de/advisories/132004.html - samba 3.0.7 CAN-2004-0881 NOTE: covered by DSA-553-1 CAN-2004-0880 NOTE: covered by DSA-553-1 CAN-2004-0879 NOTE: reserved CAN-2004-0878 NOTE: reserved CAN-2004-0877 NOTE: reserved CAN-2004-0876 NOTE: reserved CAN-2004-0875 - phpgroupware 0.9.16.002 CAN-2004-0874 NOTE: reserved CAN-2004-0873 NOTE: not-for-us (apple) CAN-2004-0872 NOTE: reserved CAN-2004-0871 NOTE: reserved CAN-2004-0870 NOTE: reserved CAN-2004-0869 NOTE: reserved CAN-2004-0868 NOTE: not-for-us (microsoft) CAN-2004-0867 - mozilla-firefox 0.9.3 CAN-2004-0866 NOTE: reserved CAN-2004-0865 NOTE: reserved CAN-2004-0864 NOTE: reserved CAN-2004-0863 NOTE: reserved CAN-2004-0862 NOTE: reserved CAN-2004-0861 NOTE: reserved CAN-2004-0860 NOTE: reserved CAN-2004-0859 NOTE: reserved CAN-2004-0858 NOTE: reserved CAN-2004-0857 NOTE: reserved CAN-2004-0856 NOTE: reserved CAN-2004-0855 NOTE: reserved CAN-2004-0854 NOTE: reserved CAN-2004-0853 NOTE: reserved CAN-2004-0852 NOTE: reserved CAN-2004-0851 NOTE: reserved NOTE: covered by DSA-559-1 CAN-2004-0850 - star 1.5a46 CAN-2004-0849 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge HELP: which radius daemon in debian is "GNU Radius" (if any)? CAN-2004-0848 NOTE: reserved CAN-2004-0847 NOTE: not-for-us (microsoft) CAN-2004-0846 NOTE: not-for-us (microsoft) CAN-2004-0845 NOTE: not-for-us (microsoft) CAN-2004-0844 NOTE: not-for-us (microsoft) CAN-2004-0843 NOTE: not-for-us (microsoft) CAN-2004-0842 NOTE: not-for-us (microsoft) CAN-2004-0841 NOTE: not-for-us (microsoft) CAN-2004-0840 NOTE: not-for-us (microsoft) CAN-2004-0839 NOTE: not-for-us (microsoft) CAN-2004-0838 NOTE: reserved CAN-2004-0837 NOTE: covered by DSA-562-2 CAN-2004-0836 NOTE: covered by DSA-562-2 CAN-2004-0835 NOTE: covered by DSA-562-2 CAN-2004-0834 - speedtouch 1.3.1 CAN-2004-0833 NOTE: reserved NOTE: covered by DSA-554-1 CAN-2004-0832 - squid 2.5.6-8 CAN-2004-0831 NOTE: not-for-us (McAfee) CAN-2004-0830 NOTE: not-for-us (Microsoft) CAN-2004-0829 - smaba 2.2.11 CAN-2004-0828 NOTE: not-fos-us (AIX) CAN-2004-0827 NOTE: covered by DSA-547-1 - imagemagick 5:6.0.7.1-1 CAN-2004-0826 NOTE: not-for-us (netscape NSS) CAN-2004-0825 NOTE: not-for-us (Apple) CAN-2004-0824 NOTE: reserved CAN-2004-0823 NOTE: reserved CAN-2004-0822 NOTE: not-for-us (Apple) CAN-2004-0821 NOTE: not-for-us (Apple) CAN-2004-0820 NOTE: not-for-us (winamp) CAN-2004-0819 NOTE: not-for-us (openbsd) CAN-2004-0818 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge NOTE: reserved CAN-2004-0817 NOTE: covered by DSA-548-1 CAN-2004-0816 NOTE: reserved CAN-2004-0815 NOTE: covered by DSA-600-1 CAN-2004-0814 NOTE: reserved CAN-2004-0813 NOTE: ide-cd SG_IO vulnerability NOTE: should be fixed in recent 2.6 and 2.4 kernels TODO: check CAN-2004-0812 NOTE: reserved CAN-2004-0811 - apache2 2.0.52 CAN-2004-0810 NOTE: reserved CAN-2004-0809 NOTE: covered by DSA-558-1 - apache2 2.0.51-1 CAN-2004-0808 - samba 3.0.7 CAN-2004-0807 - samba 3.0.7 CAN-2004-0806 - cdrtools 4:2.0+a34-2 CAN-2004-0805 NOTE: covered by DSA-564-1 - mpg123 0.59r-16 CAN-2004-0804 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge NOTE: covered by DSA-567-1 CAN-2004-0803 NOTE: reserved NOTE: covered by DSA-567-1 CAN-2004-0802 NOTE: covered by DSA-552-1 CAN-2004-0801 - foomatic-filters 3.0.2 CAN-2004-0800 NOTE: not-for-us (Solaris) CAN-2004-0799 NOTE: not-for-us (Ipswitch WhatsUp Gold) CAN-2004-0798 NOTE: not-for-us (Ipswitch WhatsUp Gold) CAN-2004-0797 - zlib 1:1.2.1.1-6 CAN-2004-0796 - spamassassin 2.64 CAN-2004-0795 NOTE: not-for-us (IBM DB2 DB2RCMD.EXE) CAN-2004-0794 NOTE: covered by DSA-551-1 CAN-2004-0793 - bsdmainutils 6.0.15 CAN-2004-0792 - rsync 2.6.3 CAN-2004-0791 NOTE: reserved CAN-2004-0790 NOTE: reserved CAN-2004-0789 NOTE: reserved CAN-2004-0788 NOTE: covered by DSA-546-1 CAN-2004-0787 NOTE: not-for-us (seems OpenCA is not in Debian) CAN-2004-0786 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge - apache2 2.0.51 CAN-2004-0785 - gaim 0.82 CAN-2004-0784 - gaim 0.82 CAN-2004-0783 NOTE: covered by DSA-549-1 CAN-2004-0782 NOTE: covered by DSA-546-1 CAN-2004-0781 NOTE: covered by DSA-541 CAN-2004-0780 NOTE: reserved CAN-2004-0779 - mozilla 1.7 - mozilla-firefox 0.9 CAN-2004-0778 - cvs 1.12.9 CAN-2004-0777 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge - courier-imap 2.2.2 CAN-2004-0776 NOTE: reserved CAN-2004-0775 NOTE: not-for-us (Windows) CAN-2004-0774 NOTE: not-for-us (Real Helix server not in Debian) CAN-2004-0773 NOTE: reserved CAN-2004-0772 NOTE: covered by DSA-543-1 CAN-2004-0771 - lha 1.14i-9 CAN-2004-0770 NOTE: reserved CAN-2004-0769 - lha 1.14i-9 CAN-2004-0768 NOTE: covered by DSA-536 CAN-2004-0767 NOTE: not-for-us (NGSEC StackDefender) CAN-2004-0766 NOTE: not-for-us (NGSEC StackDefender) CAN-2004-0765 - mozilla 1.7 - mozilla-firefox 0.9 CAN-2004-0764 - mozilla 1.7 - mozilla-firefox 0.9 CAN-2004-0763 - mozilla-firefox 0.9.3 CAN-2004-0762 - mozilla 1.7 - mozilla-firefox 0.9 CAN-2004-0761 - mozilla 1.7 - mozilla-firefox 0.9 CAN-2004-0760 - mozilla 1.7.2 - mozilla-firefox 0.9.3 CAN-2004-0759 - mozilla 1.7 CAN-2004-0758 - mozilla 1.7.2 - mozilla-firefox 0.9.3 CAN-2004-0757 - mozilla 1.7 - mozilla-firefox 0.9 CAN-2004-0756 NOTE: reserved CAN-2004-0755 NOTE: covered by DSA-537 - gaim 1:0.82.1-1 CAN-2004-0754 - gaim 1:0.82.1-1 CAN-2004-0753 NOTE: covered by DSA-546-1 CAN-2004-0752 - openoffice.org 1.1.2-4 CAN-2004-0751 - apache2 2.0.50-11 CAN-2004-0750 NOTE: not-for-us (Red Hat specific) CAN-2004-0749 NOTE: reserved - subversion 1.0.9-2 CAN-2004-0748 - apache2 2.0.51 CAN-2004-0747 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge - apache2 2.0.51 CAN-2004-0746 - kdelibs 4:3.2.3-3.sarge.1 NOTE: in t-p-u; 4.3.3 in unstable also fixes it CAN-2004-0745 - lha 1.14i-10 CAN-2004-0744 NOTE: not-for-us (MacOS) CAN-2004-0743 NOTE: not-for-us (MacOS) CAN-2004-0742 NOTE: not-for-us (Sun Java System Portal Server) CAN-2004-0741 NOTE: not-for-us (LionMax Software WWW File Share Pro) CAN-2004-0740 NOTE: not-for-us (Lexmark) CAN-2004-0739 NOTE: not-for-us (Whisper FTP Surfer) CAN-2004-0738 NOTE: not-for-us (phpnuke) CAN-2004-0737 NOTE: not-for-us (phpnuke) CAN-2004-0736 NOTE: not-for-us (phpnuke) CAN-2004-0735 NOTE: not-for-us (various windows games) CAN-2004-0734 NOTE: not-for-us (Web_Store.cgi) CAN-2004-0733 NOTE: not-for-us (OllyDbg) CAN-2004-0732 NOTE: not-for-us (phpnuke) CAN-2004-0731 NOTE: not-for-us (phpnuke) CAN-2004-0730 - phpbb2 2.0.10 CAN-2004-0729 - phpbb2 2.0.10 CAN-2004-0728 NOTE: not-for-us (Microsoft) CAN-2004-0727 NOTE: not-for-us (Microsoft) CAN-2004-0726 NOTE: not-for-us (Microsoft) CAN-2004-0725 - moodle 1.4 CAN-2004-0724 NOTE: not-for-us (Half Life) CAN-2004-0723 NOTE: not-for-us (Microsoft) CAN-2004-0722 - mozilla 1.6 CAN-2004-0721 - konqueror 4:3.2.3-1.sarge.1 - kdelibs 4:3.2.3-3.sarge.1 NOTE: in t-p-u; also fixed in 4.3.3 in unstable CAN-2004-0720 NOTE: not-for-us (Safari) CAN-2004-0719 NOTE: not-fos-us (Microsoft) CAN-2004-0718 - mozilla 1.6 - mozilla-firefox 0.8 CAN-2004-0717 NOTE: not-for-us (opera 7.50) CAN-2004-0716 NOTE: not-for-us (HP-UX) CAN-2004-0715 NOTE: not-for-us (BEA WebLogic Server and WebLogic Express) CAN-2004-0714 NOTE: not-for-us (Cisco) CAN-2004-0713 NOTE: not-for-us (BEA WebLogic Server and WebLogic Express) CAN-2004-0712 NOTE: not-for-us (BEA WebLogic Server) CAN-2004-0711 NOTE: not-for-us (BEA WebLogic Server) CAN-2004-0710 NOTE: not-for-us (Cisco) CAN-2004-0709 NOTE: not-for-us (HP OpenView Select Access) CAN-2004-0708 - moin 1.2.2 CAN-2004-0707 - bugzilla 2.16.7-0.1 CAN-2004-0706 NOTE: bugzilla 2.16.x is not affected, only 2.17 which is not yet in Debian CAN-2004-0705 - bugzilla 2.16.7-0.1 CAN-2004-0704 - bugzilla 2.16.7-0.1 CAN-2004-0703 NOTE: bugzilla 2.16.x is not affected, only 2.17 which is not yet in Debian CAN-2004-0702 NOTE: bugzilla 2.16.x is not affected, only 2.17 which is not yet in Debian CAN-2004-0701 NOTE: not-for-us (Solaris) CAN-2004-0700 NOTE: covered by DSA-532 CAN-2004-0699 NOTE: not-for-us (Check Point VPN) CAN-2004-0698 NOTE: not-for-us (WebSTAR) CAN-2004-0697 NOTE: not-for-us (WebSTAR) CAN-2004-0696 NOTE: not-for-us (WebSTAR) CAN-2004-0695 NOTE: not-for-us (WebSTAR) CAN-2004-0694 NOTE: reserved - lha 1.14i-10 CAN-2004-0693 NOTE: covered by DSA-542-1 CAN-2004-0692 NOTE: covered by DSA-542-1 CAN-2004-0691 NOTE: covered by DSA-542-1 CAN-2004-0690 - kdelibs 4:3.2.3-3.sarge.1 NOTE: in t-p-u, 4.3.3 in unstable is also fixed CAN-2004-0689 NOTE: covered by DSA-539 CAN-2004-0688 NOTE: covered by DSA-560-1 CAN-2004-0687 NOTE: covered by DSA-560-1 CAN-2004-0686 - samba 3.0.5 CAN-2004-0685 NOTE: reserved CAN-2004-0684 NOTE: not-for-us (WebSphere Edge Server) CAN-2004-0683 NOTE: not-for-us (Norton) CAN-2004-0682 NOTE: not-for-us (Comersus Cart) CAN-2004-0681 NOTE: not-for-us (Comersus Cart) CAN-2004-0680 NOTE: not-for-us (Zoom DSL modem) CAN-2004-0679 NOTE: not-for-us (UnrealIRCd) CAN-2004-0678 NOTE: not-for-us (12Planet Chat Server) CAN-2004-0677 NOTE: not-for-us (Fastream NETFile FTP Server) CAN-2004-0676 NOTE: not-for-us (Fastream NETFile FTP Server) CAN-2004-0675 NOTE: not-for-us (c32web.exe) CAN-2004-0674 NOTE: not-for-us (Enterasys XSR-1800 series Security Routers) CAN-2004-0673 NOTE: not-for-us (SCI Photo Chat Server) CAN-2004-0672 NOTE: not-for-us (Netegrity IdentityMinder Web Edition) CAN-2004-0671 NOTE: not-for-us (Brightmail Spamfilter) CAN-2004-0670 NOTE: not-for-us (Rompager) CAN-2004-0669 NOTE: not-for-us (Lotus) CAN-2004-0668 NOTE: not-for-us (Lotus) CAN-2004-0667 TODO: kernel-patch-adamantix may contain the RSBAC patch, check CAN-2004-0666 NOTE: not-for-us (popclient not in Debian) CAN-2004-0665 NOTE: not-for-us (csFAQ not in Debian) CAN-2004-0664 NOTE: not-for-us (PowerPortal) CAN-2004-0663 NOTE: not-for-us (PowerPortal) CAN-2004-0662 NOTE: not-for-us (PowerPortal) CAN-2004-0661 NOTE: not-for-us (D-Link AirPlus DI-614+) CAN-2004-0660 NOTE: not-for-us (CuteNews) CAN-2004-0659 NOTE: not-for-us (mplayer) CAN-2004-0658 NOTE: invalid according to www.osvdb.org/7253 CAN-2004-0657 - ntp 4.0 CAN-2004-0656 - pure-ftpd 1.0.19-1 CAN-2004-0655 NOTE: not-for-us (Gentoo specific) CAN-2004-0654 NOTE: not-for-us (Solaris) CAN-2004-0653 NOTE: not-for-us (Solaris) CAN-2004-0652 NOTE: not-for-us (BEA WebLogic Server and WebLogic Express) CAN-2004-0651 NOTE: JRE is not in Debian, assuming the various wrappers handle NOTE the new version. Not worrying about upgrades. CAN-2004-0650 NOTE: not-for-us (Cisco) CAN-2004-0649 NOTE: covered by DSA-530 CAN-2004-0648 - mozilla 1.7.1 - mozilla-firefox 0.9.2 - mozilla-thunderbird 0.7.2 CAN-2004-0647 - shorewall 2.0.3a CAN-2004-0646 NOTE: reserved CAN-2004-0645 NOTE: covered by DSA-550-1 CAN-2004-0644 NOTE: covered by DSA-543-1 CAN-2004-0643 NOTE: covered by DSA-543-1 CAN-2004-0642 NOTE: covered by DSA-543-1 CAN-2004-0641 NOTE: reserved CAN-2004-0640 NOTE: covered by DSA-529 CAN-2004-0639 NOTE: covered by DSA-535 CAN-2004-0638 NOTE: reserved CAN-2004-0637 NOTE: reserved CAN-2004-0636 NOTE: not-for-us (AOL Instant Messenger) CAN-2004-0635 NOTE: covered by DSA-528 CAN-2004-0634 - ethereal 0.10.5 CAN-2004-0633 - ethereal 0.10.5 CAN-2004-0632 NOTE: not-for-us (adobe reader) CAN-2004-0631 NOTE: not-for-us (adobe acrobat) CAN-2004-0630 NOTE: not-for-us (adobe acrobat) CAN-2004-0629 NOTE: not-for-us (adobe acrobat) CAN-2004-0628 NOTE: apparently only affects mysql-dfsg >= 4.1.x, debian has older version CAN-2004-0627 NOTE: apparently only affects mysql-dfsg >= 4.1.x, debian has older version CAN-2004-0626 NOTE: fixed after 2.6.6 kernel CAN-2004-0625 NOTE: not-for-us (Infinity WEB) CAN-2004-0624 NOTE: not-for-us (Artmedic links) CAN-2004-0623 - gnats 4.0-6.1 CAN-2004-0622 NOTE: not-for-us (MacOS) CAN-2004-0621 NOTE: not-for-us (Newsletter ZWS) CAN-2004-0620 NOTE: not-for-us (vBulletin) CAN-2004-0619 NOTE: not-for-us (Linux Broadcom 5820 cryptonet driver) NOTE: does not seem to be part of linux kernel or other package CAN-2004-0618 NOTE: not-for-us (freebsd) CAN-2004-0617 NOTE: not-for-us (ArbitroWeb) CAN-2004-0616 NOTE: not-for-us (BT Voyager 2000 Wireless ADSL Router) CAN-2004-0615 NOTE: not-for-us (D-Link DI-614+ SOHO router) CAN-2004-0614 NOTE: not-for-us (osTicket) CAN-2004-0613 NOTE: not-for-us (osTicket) CAN-2004-0612 NOTE: not-for-us (ZoneAlarm Pro) CAN-2004-0611 NOTE: not-for-us (Netgear FVS318 VPN Router) CAN-2004-0610 NOTE: not-for-us (Microsoft MN-500 Wireless Router) CAN-2004-0609 - rssh 2.2.1 CAN-2004-0608 NOTE: not-for-us (Unreal Engine) CAN-2004-0607 - racoon 0.3.3-1 CAN-2004-0606 NOTE: not-for-us (Infoblox DNS One) CAN-2004-0605 NOTE: Dossibly fixed in ircd-hybrid 7.0.2: "fixed flood limit bug". NOTE: Does not match posted patch. Mailed Debian maintainer. CAN-2004-0604 NOTE: not-for-us (giFT-FastTrack not in debian) CAN-2004-0603 NOTE: not-for-us (Gentoo-specific bug in gzip introduced by botched security fix) CAN-2004-0602 NOTE: not-for-us (FreeBSD) CAN-2004-0601 NOTE: reserved CAN-2004-0600 - samba 3.0.5 CAN-2004-0599 NOTE: covered by DSA-536 CAN-2004-0598 NOTE: covered by DSA-536 CAN-2004-0597 NOTE: covered by DSA-536 CAN-2004-0596 - kernel-source-2.6.8 CAN-2004-0595 NOTE: covered by DSA-531 CAN-2004-0594 NOTE: covered by DSA-531 CAN-2004-0593 NOTE: not-for-us (Sygate Enforcer) CAN-2004-0592 NOTE: reserved CAN-2004-0591 NOTE: covered by DSA-533 CAN-2004-0590 - freeswan 2.04-10 - openswan 2.2.0 CAN-2004-0589 NOTE: not-for-us (Cisco) CAN-2004-0588 - usermin 1.090-1 CAN-2004-0587 - qla2x00-source 7.01.01-1 CAN-2004-0586 NOTE: not-for-us (Windows) CAN-2004-0585 NOTE: rejected CAN-2004-0584 - imp 3.2.4 CAN-2004-0583 NOTE: covered by DSA-526 - usermin 1.090-1 - webmin 1.150-1 CAN-2004-0582 NOTE: covered by DSA-526 - usermin 1.090-1 CAN-2004-0581 NOTE: not-for-us (Mandrake script) CAN-2004-0580 NOTE: not-for-us (Linksys routers) CAN-2004-0579 NOTE: covered by DSA-522 CAN-2004-0578 NOTE: not-for-us (Wingate) CAN-2004-0577 NOTE: not-for-us (Wingate) CAN-2004-0576 NOTE: not-for-us (GNU radius not in Debian) CAN-2004-0575 NOTE: not-for-us (Windows) CAN-2004-0574 NOTE: not-for-us (Windows) CAN-2004-0573 NOTE: not-for-us (Windows) CAN-2004-0572 NOTE: not-for-us (Windows) CAN-2004-0571 NOTE: reserved CAN-2004-0570 NOTE: reserved CAN-2004-0569 NOTE: not-for-us (Windows) CAN-2004-0568 NOTE: reserved CAN-2004-0567 NOTE: reserved CAN-2004-0566 NOTE: not-for-us (Windows) CAN-2004-0565 NOTE: ia64 only NOTE: appears fixed in 2.4.27/2.6.8 CAN-2004-0564 NOTE: reserved NOTE: covered by DSA-557-1 CAN-2004-0563 NOTE: reserved NOTE: covered by DSA-555-1 CAN-2004-0562 NOTE: reserved CAN-2004-0561 NOTE: reserved CAN-2004-0560 NOTE: reserved CAN-2004-0559 NOTE: covered by DSA-544-1 CAN-2004-0558 NOTE: covered by DSA-545-1 CAN-2004-0557 NOTE: covered by DSA-565-1 CAN-2004-0556 NOTE: reserved CAN-2004-0555 NOTE: reserved CAN-2004-0554 NOTE: this was a big deal and is fixed in all current kernels CAN-2004-0553 NOTE: reserved CAN-2004-0552 NOTE: not-for-us (Sophos Small Business Suite) CAN-2004-0551 NOTE: not-for-us (Cisco) CAN-2004-0550 NOTE: not-for-us (Real Player) CAN-2004-0549 NOTE: not-for-us (Windows) CAN-2004-0548 - aspell 0.50.5-3 CAN-2004-0547 NOTE: covered by DSA-516 CAN-2004-0546 NOTE: reserved CAN-2004-0545 NOTE: not-for-us (AIX) CAN-2004-0544 NOTE: not-for-us (AIX) CAN-2004-0543 NOTE: not-for-us (Oracle) CAN-2004-0542 NOTE: not-for-us (php4 bug only affects Windows) CAN-2004-0541 - squid 2.5.5-5 CAN-2004-0540 NOTE: not-for-us (Windows) CAN-2004-0539 NOTE: not-for-us (MacOS) CAN-2004-0538 NOTE: not-for-us (MacOS) CAN-2004-0537 NOTE: not-for-us (Opera) CAN-2004-0536 - tripwire 2.3.1.2.0-2.1 CAN-2004-0535 NOTE: fixed in 2.4.27 CAN-2004-0534 NOTE: reserved CAN-2004-0533 NOTE: reserved CAN-2004-0532 NOTE: reserved CAN-2004-0531 NOTE: reserved CAN-2004-0530 NOTE: not-for-us (Slackware specific rpath issue) CAN-2004-0529 NOTE: not-for-us (cPanel is not our cpanel) CAN-2004-0528 NOTE: not-for-us (Netscape Navigator 7.1) CAN-2004-0527 TODO: unchecked CAN-2004-0526 NOTE: not-for-us (Windows) CAN-2004-0525 NOTE: not-for-us (iLO) CAN-2004-0524 NOTE: not-for-us (Change_passwd SquirrelMail plugin not present in debian) CAN-2004-0523 NOTE: covered by DSA-520 CAN-2004-0522 NOTE: covered by DSA-512 CAN-2004-0521 NOTE: covered by DSA-535 CAN-2004-0520 NOTE: covered by DSA-535 CAN-2004-0519 NOTE: covered by DSA-535 CAN-2004-0518 NOTE: not-for-us (MacOS) CAN-2004-0517 NOTE: not-for-us (MacOS) CAN-2004-0516 NOTE: not-for-us (MacOS) CAN-2004-0515 NOTE: not-for-us (MacOS) CAN-2004-0514 NOTE: not-for-us (MacOS) CAN-2004-0513 NOTE: not-for-us (MacOS) CAN-2004-0512 NOTE: reserved CAN-2004-0511 NOTE: reserved CAN-2004-0510 NOTE: reserved CAN-2004-0509 NOTE: reserved CAN-2004-0508 NOTE: reserved CAN-2004-0507 - ethereal 0.10.4 CAN-2004-0506 - ethereal 0.10.4 CAN-2004-0505 - ethereal 0.10.4 CAN-2004-0504 - ethereal 0.10.4 CAN-2004-0503 NOTE: not-for-us (Microsoft) CAN-2004-0502 NOTE: not-for-us (Microsoft) CAN-2004-0501 NOTE: not-for-us (Microsoft) CAN-2004-0500 - gaim 1:0.81-3 CAN-2004-0499 NOTE: reserved CAN-2004-0498 NOTE: reserved CAN-2004-0497 NOTE: linux kernel fchown hole, fixed in all current kernels CAN-2004-0496 TODO: unchecked CAN-2004-0495 NOTE: fixed in 2.4.27-rc1 CAN-2004-0494 - gnome-vfs 1.0.1 CAN-2004-0493 - apache2 2.0.50-1 CAN-2004-0492 NOTE: covered by DSA-525 - apache 1.3.31-2 CAN-2004-0491 NOTE: reserved CAN-2004-0490 NOTE: not-for-us (cPanel is not our cpanel) CAN-2004-0489 NOTE: not-for-us (MacOS) CAN-2004-0488 NOTE: covered by DSA-532 - apache2 2.0.50-1 CAN-2004-0487 NOTE: not-for-us (Norton) CAN-2004-0486 NOTE: not-for-us (MacOS) CAN-2004-0485 NOTE: not-for-us (MacOS) CAN-2004-0484 NOTE: not-for-us (Microsoft) CAN-2004-0483 NOTE: not-for-us (IRIX) CAN-2004-0482 NOTE: not-for-us (OpenBSD) CAN-2004-0481 NOTE: reserved CAN-2004-0480 NOTE: not-for-us (Lotus Notes) CAN-2004-0479 NOTE: not-for-us (Microsoft) CAN-2004-0478 NOTE: only a Mozilla DOS TODO: not even fixed upstream CAN-2004-0477 NOTE: not-for-us (3Com OfficeConnect Remote 812 ADSL Router) CAN-2004-0476 NOTE: not-for-us (3Com OfficeConnect Remote 812 ADSL Router) CAN-2004-0475 NOTE: not-for-us (Microsoft) CAN-2004-0474 NOTE: not-for-us (Help Center (HelpCtr.exe)) CAN-2004-0473 NOTE: not-for-us (opera) CAN-2004-0472 NOTE: rejected CAN-2004-0471 NOTE: not-for-us (BEA WebLogic) CAN-2004-0470 NOTE: not-for-us (BEA WebLogic) CAN-2004-0469 NOTE: not-for-us (Check Point VPN) CAN-2004-0468 NOTE: not-for-us (Juniper JUNOS) CAN-2004-0467 NOTE: reserved CAN-2004-0466 NOTE: reserved CAN-2004-0465 NOTE: reserved CAN-2004-0464 NOTE: reserved CAN-2004-0463 NOTE: reserved CAN-2004-0462 NOTE: reserved CAN-2004-0461 NOTE: debian probably not vulnerable - dhcp3 3.0.1 CAN-2004-0460 - dhcp3 3.0.1 CAN-2004-0459 NOTE: not-for-us (DOS in 802.11 protocol) CAN-2004-0458 NOTE: covered by DSA-503 - mah-jong 1.6.2-1 CAN-2004-0457 NOTE: covered by DSA-540 CAN-2004-0456 NOTE: covered by DSA-527 CAN-2004-0455 NOTE: covered by DSA-523 CAN-2004-0454 NOTE: covered by DSA-524 CAN-2004-0453 - vice 1.14-2 CAN-2004-0452 NOTE: reserved CAN-2004-0451 NOTE: covered by DSA-521 CAN-2004-0450 NOTE: covered by DSA-513 CAN-2004-0449 NOTE: reserved CAN-2004-0448 NOTE: covered by DSA-510 CAN-2004-0447 NOTE: fixed in linux 2.4.26 CAN-2004-0446 NOTE: reserved CAN-2004-0445 NOTE: not-for-us (Norton) CAN-2004-0444 NOTE: not-for-us (Norton) CAN-2004-0443 NOTE: reserved CAN-2004-0442 NOTE: reserved CAN-2004-0441 NOTE: reserved CAN-2004-0440 NOTE: reserved CAN-2004-0439 NOTE: reserved CAN-2004-0438 NOTE: reserved CAN-2004-0437 NOTE: not-for-us (Titan FTP Server) CAN-2004-0436 NOTE: reserved CAN-2004-0435 NOTE: not-for-us (FreeBSD) CAN-2004-0434 NOTE: covered by DSA-504 CAN-2004-0433 NOTE: mplayer not in Debian - xine-lib 1-rc4 CAN-2004-0432 - proftpd 1.2.9-4 CAN-2004-0431 NOTE: not-for-us (Apple QuickTime) CAN-2004-0430 NOTE: not-for-us (MacOS) CAN-2004-0429 NOTE: reserved CAN-2004-0428 NOTE: reserved CAN-2004-0427 NOTE: fixed after 2.6.6/2.4.26 kernel CAN-2004-0426 NOTE: covered by DSA-499 CAN-2004-0425 NOTE: not-for-us (windows) CAN-2004-0424 NOTE: fixed after 2.6.4/2.4.26 kernel CAN-2004-0423 NOTE: bug still exists in the ssmtp source, but is only activated if NOTE: --enable-logfile is used in ./configure NOTE: The package doesn't enable that flag so it is safe. CAN-2004-0422 NOTE: covered by DSA-500 CAN-2004-0421 NOTE: covered by DSA-498 CAN-2004-0420 NOTE: not-for-us (windows) CAN-2004-0419 NOTE: reserved (baruch) CAN-2004-0418 - cvs 1:1.12.9-1 NOTE: covered by DSA-519 CAN-2004-0417 - cvs 1:1.12.9-1 NOTE: covered by DSA-519 CAN-2004-0416 - cvs 1:1.12.9-1 NOTE: covered by DSA-519 CAN-2004-0415 NOTE: fixed in 2.4.27-rc6 CAN-2004-0414 - cvs 1:1.12.9-1 CAN-2004-0413 - subversion 1.0.5-1 CAN-2004-0412 - mailman 2.1.4-5 CAN-2004-0411 NOTE: covered by DSA-518 CAN-2004-0410 NOTE: reserved NOTE: An empty CAN, never published. CAN-2004-0409 NOTE: covered by DSA-493 - chat 2.0.8-1 CAN-2004-0408 NOTE: covered by DSA-494 CAN-2004-0407 NOTE: not-for-us (ColdFusion) CAN-2004-0406 NOTE: reserved CAN-2004-0405 NOTE: covered by DSA-486 - cvs 1:1.12.5-4 CAN-2004-0404 NOTE: covered by DSA-488 CAN-2004-0403 - racoon 0.3.1-3 CAN-2004-0402 NOTE: covered by DSA-508 CAN-2004-0401 - libtasn1 0.1.2-2 CAN-2004-0400 NOTE: covered by DSA-501 - exim 3.36-11 CAN-2004-0399 NOTE: covered by DSA-501 - exim 3.36-11 CAN-2004-0398 NOTE: covered by DSA-506 begin claimed by greuff-guest (due 31 Oct) CAN-2004-0397 - subversion 1.0.3-1 NOTE: fix history: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=249791 CAN-2004-0396 NOTE: covered by DSA-505 - cvs 1:1.12.5-6 CAN-2004-0395 NOTE: covered by DSA-509 CAN-2004-0394 NOTE: apparently not very exploitable, does not affect 2.6 NOTE: patch: http://www.ultramonkey.org/bugs/cve-patch/CAN-2004-0394.patch NOTE: not fixed in 2.4.27 by inspection, didn't bother with a bug CAN-2004-0393 NOTE: covered by DSA-524 CAN-2004-0392 - apache 1.3.31-2 CAN-2004-0391 NOTE: not-for-us (Cisco Wireless LAN Solution Engine) CAN-2004-0390 NOTE: reserved CAN-2004-0389 NOTE: not-for-us (RealNetworks Helix Universal Server) CAN-2004-0388 NOTE: covered by DSA-483 CAN-2004-0387 NOTE: not-for-us (RealPlayer plugin) CAN-2004-0386 NOTE: not-for-us (mplayer; not in the archive) CAN-2004-0385 NOTE: not-for-us (Oracle 9i Application Server Web Cache) CAN-2004-0384 NOTE: reserved CAN-2004-0383 NOTE: not-for-us (Mail for Mac OS X) CAN-2004-0382 NOTE: not-for-us (CUPS printing system in Mac OS X) CAN-2004-0381 NOTE: covered by DSA-483 CAN-2004-0380 NOTE: not-for-us (Microsoft Outlook Express) CAN-2004-0379 NOTE: not-for-us (Microsoft SharePoint Portal Server 2001) CAN-2004-0378 NOTE: reserved CAN-2004-0377 NOTE: not-for-us (perl; Win32 is affected, UNIX systems not) CAN-2004-0376 NOTE: covered by DSA-473 CAN-2004-0375 NOTE: not-for-us (Symantec Norton Internet Security) CAN-2004-0374 NOTE: covered by DSA-471 CAN-2004-0373 NOTE: reserved CAN-2004-0372 NOTE: covered by DSA-477 CAN-2004-0371 NOTE: covered by DSA-476 CAN-2004-0370 NOTE: not-for-us (KAME) end claimed by greuff-guest CAN-2004-0369 NOTE: reserved CAN-2004-0368 NOTE: not-for-us (CDE) CAN-2004-0367 - ethereal 0.10.3 CAN-2004-0366 NOTE: covered by DSA-469 CAN-2004-0365 - ethereal 0.10.3 CAN-2004-0364 NOTE: not-for-us (WrapNISUM ActiveX) CAN-2004-0363 NOTE: not-for-us (SymSpamHelper ActiveX) CAN-2004-0362 NOTE: not-for-us (ISS Protocol Analysis Module) CAN-2004-0361 NOTE: not-for-us (safari) CAN-2004-0360 NOTE: not-for-us (solaris) CAN-2004-0359 NOTE: not-for-us (Invision Power Board) CAN-2004-0358 NOTE: not-for-us (VirtuaNews Admin Panel) CAN-2004-0357 NOTE: not-for-us (SL Mail Pro) CAN-2004-0355 NOTE: not-for-us (Invision Power Board) CAN-2004-0354 NOTE: not-for-us (GNU Anubis) CAN-2004-0353 NOTE: not-for-us (GNU Anubis) CAN-2004-0352 NOTE: not-for-us (Cisco) CAN-2004-0351 NOTE: not-for-us (Spider Sales) CAN-2004-0350 NOTE: not-for-us (Spider Sales) CAN-2004-0349 NOTE: not-for-us (GWeb HTTP Server) CAN-2004-0348 NOTE: not-for-us (SpiderSales) CAN-2004-0346 - proftpd 1.2.9 CAN-2004-0345 NOTE: not-for-us (Red Faction) CAN-2004-0344 NOTE: not-for-us (YaBB SE) CAN-2004-0343 NOTE: not-for-us (YaBB SE) CAN-2004-0342 NOTE: not-for-us (WFPTD) CAN-2004-0341 NOTE: not-for-us (WFPTD) CAN-2004-0340 NOTE: not-for-us (WFPTD) CAN-2004-0339 - phpbb2 2.0.6d CAN-2004-0338 NOTE: not-for-us (Invision Board Forum) CAN-2004-0337 NOTE: not-for-us (602LAN SUITE) CAN-2004-0335 NOTE: not-for-us (602LAN SUITE) CAN-2004-0334 NOTE: not-for-us (AXIS 2100) CAN-2004-0333 NOTE: not-for-us (WinZip) CAN-2004-0332 NOTE: not-for-us (extremail) CAN-2004-0331 NOTE: not-for-us (Dell OpenManage Web Server) CAN-2004-0330 NOTE: not-for-us (Serv-U) CAN-2004-0329 NOTE: not-for-us (FreeChat) CAN-2004-0328 NOTE: not-for-us (Gigabyte Broadband Router) CAN-2004-0327 NOTE: not-for-us (PhpNewsManager) CAN-2004-0326 NOTE: not-for-us (GateKeeper Pro) CAN-2004-0325 NOTE: not-for-us (TypSoft) CAN-2004-0324 NOTE: not-for-us (confirm 0.70) CAN-2004-0323 NOTE: not-for-us (xmb 1.8 final sp2) CAN-2004-0322 NOTE: not-for-us (xmb 1.8 final sp2) CAN-2004-0321 NOTE: not-for-us (Team Factor) CAN-2004-0319 NOTE: not-for-us (ezBoard) CAN-2004-0318 NOTE: not-for-us (Load Sharing Facility) CAN-2004-0317 NOTE: not-for-us (Load Sharing Facility) CAN-2004-0316 NOTE: not-for-us (Avirt) CAN-2004-0315 NOTE: not-for-us (Avirt) CAN-2004-0314 NOTE: not-for-us (WebzEdit) CAN-2004-0313 NOTE: not-for-us (PSOProxy) CAN-2004-0312 NOTE: not-for-us (LINKSYS) CAN-2004-0311 NOTE: not-for-us (APC) CAN-2004-0310 NOTE: not-for-us (LiveJournal) CAN-2004-0308 NOTE: not-for-us (ZoneLabs) CAN-2004-0308 NOTE: not-for-us (cisco) CAN-2004-0305 NOTE: not-for-us (WebCortex WebStores) CAN-2004-0304 NOTE: not-for-us (WebCortex WebStores) CAN-2004-0303 NOTE: not-for-us (OWLS 1.0) CAN-2004-0302 NOTE: not-for-us (OWLS 1.0) CAN-2004-0301 NOTE: not-for-us (Online Store Kit) CAN-2004-0300 NOTE: not-for-us (Online Store Kit) begin claimed by greuff-guest CAN-2004-0299 NOTE: not-for-us (smallftpd; not in Debian) CAN-2004-0298 NOTE: not-for-us (CesarFTP; Win32) CAN-2004-0296 NOTE: not-for-us (Broker FTP 6.1.0.0; Win32) CAN-2004-0295 NOTE: not-for-us (Broker FTP 6.1.0.0 again; Win32) CAN-2004-0294 NOTE: not-for-us (yabb; not in Debian) CAN-2004-0293 NOTE: not-for-us (ShopCartCGI 2.3; not in Debian) CAN-2004-0292 NOTE: not-for-us (KarjaSoft Sami HTTP Server 1.0.4; Win32) CAN-2004-0291 NOTE: not-for-us (YaBB; not in Debian) CAN-2004-0290 NOTE: not-for-us (Purge Jihad; not in Debian) CAN-2004-0289 NOTE: not-for-us (SignatureDB; not in Debian) CAN-2004-0288 - mnogosearch-3.2.18 NOTE: it's not quite clear which version exactly fixes the problem; NOTE: I checked the source code of the most recent version and compared NOTE: it with the problematic section described in the advisory NOTE: (http://marc.theaimsgroup.com/?l=bugtraq&m=107695139930726&w=2) NOTE: and I can confirm the buffer overflow is fixed there CAN-2004-0287 NOTE: not-for-us (Xlight FTP server 1.52; not in Debian) CAN-2004-0286 NOTE: not-for-us (RobotFTP; not in Debian) CAN-2004-0285 NOTE: not-for-us (PHP scripts not in Debian) CAN-2004-0284 NOTE: not-for-us (MSIE bugs) CAN-2004-0283 NOTE: not-for-us (mailmgr; not in Debian) CAN-2004-0282 NOTE: not-for-us (Crob FTP; not in Debian) CAN-2004-0281 NOTE: not-for-us (Caucho Technology Resin; not in Debian) CAN-2004-0280 NOTE: not-for-us (Caucho Technology Resin; not in Debian) CAN-2004-0279 NOTE: not-for-us (AIMSniff; not in Debian) CAN-2004-0278 NOTE: not-for-us (Ratbag game engine; not in Debian) CAN-2004-0277 NOTE: not-for-us (Dream FTP; not in Debian) CAN-2004-0275 NOTE: not-for-us (BosDates; not in Debian) CAN-2004-0272 NOTE: not-for-us (MaxWebPortal; not in Debian) CAN-2004-0271 NOTE: not-for-us (MaxWebPortal; not in Debian) CAN-2004-0269 NOTE: not-for-us (PHP-Nuke; not in Debian) CAN-2004-0268 NOTE: not-for-us (EvolutionX; not in Debian) CAN-2004-0267 NOTE: not-for-us (eTrust InoculateIT; not in Debian) CAN-2004-0266 NOTE: not-for-us (PHP-Nuke; not in Debian) CAN-2004-0265 NOTE: not-for-us (PHP-Nuke; not in Debian) CAN-2004-0264 NOTE: not-for-us (PalmOS) CAN-2004-0262 NOTE: not-for-us (The Palace; not in Debian) CAN-2004-0260 NOTE: not-for-us (CactuShop; not in Debian) CAN-2004-0259 NOTE: not-for-us (formmail.php; not in Debian) CAN-2004-0258 NOTE: not-for-us (RealPlayer) CAN-2004-0255 NOTE: not-for-us (Xlight; not in Debian) CAN-2004-0254 NOTE: not-for-us (Discuz; not in Debian) CAN-2004-0253 NOTE: not-for-us (IBM Cloudscape) CAN-2004-0252 NOTE: not-for-us (TYPSoft FTP Server) CAN-2004-0251 NOTE: not-for-us (rxgoogle.cgi) CAN-2004-0250 NOTE: not-for-us (PhotoPost PHP Pro) CAN-2004-0249 NOTE: not-for-us (PHPX) CAN-2004-0248 NOTE: not-for-us (PHPX) CAN-2004-0247 NOTE: not-for-us (Chaser) CAN-2004-0246 NOTE: not-for-us (Les Commentaires) CAN-2004-0245 NOTE: not-for-us (Web Crossing) CAN-2004-0244 NOTE: not-for-us (Cisco Systems) CAN-2004-0243 NOTE: not-for-us (AIX) CAN-2004-0242 NOTE: not-for-us (X-Cart 3.4.3) CAN-2004-0241 NOTE: not-for-us (X-Cart 3.4.3) CAN-2004-0240 NOTE: not-for-us (X-Cart 3.4.3) CAN-2004-0239 NOTE: not-for-us (PhotoPost PHP Pro) CAN-2004-0238 - overkill 0.16-7 CAN-2004-0237 NOTE: not-for-us (Aprox PHP Portal) CAN-2004-0236 NOTE: not-for-us (thePHOTOtool) CAN-2004-0235 NOTE: covered by DSA-515 CAN-2004-0234 NOTE: covered by DSA-515 CAN-2004-0233 NOTE: not-for-us (utempter) CAN-2004-0232 NOTE: covered by DSA-497 CAN-2004-0231 NOTE: covered by DSA-497 CAN-2004-0230 NOTE: not-for-us (famous TCP RST bug) CAN-2004-0229 NOTE: not-for-us (Kernel 2.6 framebuffer bug) CAN-2004-0228 NOTE: fixed in linux 2.4.27-pre3 CAN-2004-0227 NOTE: not-for-us (ZoneMinder) CAN-2004-0226 NOTE: covered by DSA-497 CAN-2004-0225 NOTE: reserved CAN-2004-0224 - courier 0.45.1-1 CAN-2004-0223 NOTE: reserved CAN-2004-0222 NOTE: not-for-us (isakmpd in OpenBSD) CAN-2004-0221 NOTE: not-for-us (isakmpd in OpenBSD) CAN-2004-0220 NOTE: not-for-us (isakmpd in OpenBSD) CAN-2004-0219 NOTE: not-for-us (isakmpd in OpenBSD) CAN-2004-0218 NOTE: not-for-us (isakmpd in OpenBSD) CAN-2004-0217 NOTE: not-for-us (Symantec AntiVirus Scan Engine for Red Hat) CAN-2004-0216 NOTE: not-for-us (MSIE bug) CAN-2004-0215 NOTE: not-for-us (MS-Outlook-Express) CAN-2004-0214 NOTE: not-for-us (MSIE bug) CAN-2004-0213 NOTE: not-for-us (Windows bug) CAN-2004-0212 NOTE: not-for-us (Windows bug) CAN-2004-0211 NOTE: not-for-us (Windows bug) CAN-2004-0210 NOTE: not-for-us (Windows bug) CAN-2004-0209 NOTE: not-for-us (Windows bug) CAN-2004-0208 NOTE: not-for-us (Windows bug) CAN-2004-0207 NOTE: not-for-us (Windows bug) CAN-2004-0206 NOTE: not-for-us (Windows bug) CAN-2004-0205 NOTE: not-for-us (Windows bug) CAN-2004-0204 NOTE: not-for-us (Visual Studio bug) CAN-2004-0203 NOTE: not-for-us (Exchange bug) CAN-2004-0202 NOTE: not-for-us (DirectX) CAN-2004-0201 NOTE: not-for-us (Windows HTML Help) CAN-2004-0200 NOTE: not-for-us (famous Windows GDI+ JPEG parsing bug) CAN-2004-0199 NOTE: not-for-us (Windows bug) CAN-2004-0198 NOTE: reserved CAN-2004-0197 NOTE: not-for-us (MSJet bug) CAN-2004-0196 NOTE: reserved CAN-2004-0195 NOTE: reserved CAN-2004-0192 NOTE: not-for-us (Symantec Gateway Security) CAN-2004-0189 NOTE: covered by DSA-474 CAN-2004-0188 NOTE: covered by DSA-461 CAN-2004-0187 NOTE: rejected CAN-2004-0186 NOTE: covered by DSA-463 CAN-2004-0184 NOTE: covered by DSA-478 - tcpdump 3.7.2-4 CAN-2004-0183 NOTE: covered by DSA-478 - tcpdump 3.7.2-4 CAN-2004-0182 NOTE: not-for-us (mailman; RedHat specific bug) CAN-2004-0181 NOTE: fixed in 2.4.26-pre5 CAN-2004-0180 NOTE: covered by DSA-486 - 1:1.12.5-4 CAN-2004-0179 NOTE: covered by DSA-487 CAN-2004-0178 NOTE: covered by DSA-479 NOTE: fixed in 2.4.26-pre3 CAN-2004-0177 NOTE: covered by DSA-479 NOTE: fixed in 2.4.26-pre4 CAN-2004-0176 - ethereal 0.10.3-1 CAN-2004-0175 [very low] - openssh (unfixed; bug #270770) NOTE: this bug is old and known; see the bug discussion for further information. NOTE: apparently the security team thinks this is a minor issue; nevertheless, NOTE: the bug is still open, so they should close it if it really is neglectible. CAN-2004-0174 - apache 1.3.29.0.2-5 CAN-2004-0172 NOTE: not-for-us (ltrace; Debian (and no other distribution) installs this SUID root) CAN-2004-0170 NOTE: reserved CAN-2004-0168 NOTE: not-for-us (CoreFoundation for Mac OS X) CAN-2004-0166 NOTE: not-for-us (Safari) CAN-2004-0164 - ipsec-tools 0.3.3-1 NOTE: not mentioned in the changelog, so I don't know which version exactly fixes NOTE: the problem, but the patch that fixes the bug is applied: NOTE: http://marc.theaimsgroup.com/?l=bugtraq&m=107411758202662&w=2 CAN-2004-0163 NOTE: not-for-us (Sygate Secure Enterprise) CAN-2004-0162 NOTE: not-for-us (general MIME bug with security gateways) CAN-2004-0161 NOTE: not-for-us (general MIME bug with security gateways) CAN-2004-0160 NOTE: covered by DSA-446 CAN-2004-0159 NOTE: covered by DSA-447 CAN-2004-0158 NOTE: covered by DSA-445 CAN-2004-0157 NOTE: covered by DSA-484 CAN-2004-0156 NOTE: covered by DSA-485 CAN-2004-0155 - racoon 0.2.5-2 CAN-2004-0154 - nfs-utils 1:1.0.5-3 CAN-2004-0153 NOTE: covered by DSA-468 CAN-2004-0152 NOTE: covered by DSA-468 CAN-2004-0151 NOTE: covered by DSA-462 CAN-2004-0150 NOTE: covered by DSA-458 CAN-2004-0149 NOTE: covered by DSA-451 CAN-2004-0147 NOTE: reserved CAN-2004-0146 NOTE: reserved CAN-2004-0145 NOTE: reserved CAN-2004-0144 NOTE: reserved CAN-2004-0143 NOTE: not-for-us (Nokia mobile phones) CAN-2004-0142 NOTE: reserved CAN-2004-0141 NOTE: reserved CAN-2004-0140 NOTE: reserved CAN-2004-0139 NOTE: reserved CAN-2004-0138 NOTE: reserved CAN-2004-0137 NOTE: not-for-us (IRIX init) CAN-2004-0136 NOTE: not-for-us (IRIX) CAN-2004-0135 NOTE: not-for-us (IRIX) CAN-2004-0134 NOTE: not-for-us (IRIX) CAN-2004-0133 NOTE: fixed in 2.4.26-pre2 CAN-2004-0132 NOTE: not-for-us (ezContents) CAN-2004-0130 NOTE: not-for-us (phpGedView) CAN-2004-0127 NOTE: not-for-us (phpGedView) CAN-2004-0125 NOTE: not-for-us (FreeBSD jail) CAN-2004-0124 NOTE: not-for-us (Windows bug) CAN-2004-0123 NOTE: not-for-us (Windows bug) CAN-2004-0120 NOTE: not-for-us (Windows bug) CAN-2004-0119 NOTE: not-for-us (Windows bug) CAN-2004-0118 NOTE: not-for-us (Windows bug) CAN-2004-0117 NOTE: not-for-us (Windows bug) CAN-2004-0116 NOTE: not-for-us (Windows bug) CAN-2004-0112 - openssl 0.9.7d-1 CAN-2004-0111 NOTE: covered by DSA-464 CAN-2004-0110 NOTE: covered by DSA-455 CAN-2004-0109 NOTE: covered by DSA-479 NOTE: fixed in 2.4.26-rc4 CAN-2004-0108 NOTE: covered by DSA-460 CAN-2004-0107 - sysstat 5.0.2-1 CAN-2004-0106 NOTE: covered by DSA-443 CAN-2004-0105 NOTE: covered by DSA-449 CAN-2004-0104 NOTE: covered by DSA-449 CAN-2004-0103 NOTE: covered by DSA-432 CAN-2004-0102 NOTE: reserved CAN-2004-0101 NOTE: reserved CAN-2004-0100 NOTE: reserved CAN-2004-0098 NOTE: reserved CAN-2004-0097 NOTE: covered by DSA-448 CAN-2004-0094 NOTE: covered by DSA-443 CAN-2004-0093 NOTE: covered by DSA-443 CAN-2004-0092 NOTE: not-for-us (Safari) CAN-2004-0091 NOTE: not-for-us (vBulletin) CAN-2004-0090 NOTE: reserved CAN-2004-0088 NOTE: not-for-us (MacOS) CAN-2004-0087 NOTE: not-for-us (MacOS) CAN-2004-0086 NOTE: not-for-us (MacOS) CAN-2004-0085 NOTE: not-for-us (MacOS) CAN-2004-0084 NOTE: covered by DSA-443 CAN-2004-0083 NOTE: covered by DSA-443 CAN-2004-0081 NOTE: covered by DSA-465 CAN-2004-0079 NOTE: covered by DSA-465 CAN-2004-0077 NOTE: covered by DSA-438 NOTE: fixed in 2.4.26-pre3 CAN-2004-0076 NOTE: rejected CAN-2004-0074 NOTE: turned out not to be vulnerable. See bug #278777 CAN-2004-0073 NOTE: not-for-us (EasyDynamicPages) CAN-2004-0072 NOTE: not-for-us (Accipiter Direct Server 6.0) CAN-2004-0071 NOTE: not-for-us (PHP Man Page Lookup 1.2.0) CAN-2004-0069 NOTE: not-for-us (HD Soft Windows FTP Server 1.6) CAN-2004-0067 NOTE: not-for-us (phpGedView) CAN-2004-0066 NOTE: not-for-us (phpGedView) CAN-2004-0065 NOTE: not-for-us (phpGedView) CAN-2004-0064 NOTE: not-for-us (SuSE YaST) CAN-2004-0062 NOTE: not-for-us (FishCart) CAN-2004-0061 NOTE: not-for-us (WWW File Share Pro 2.42) CAN-2004-0060 NOTE: not-for-us (WWW File Share Pro 2.42) CAN-2004-0059 NOTE: not-for-us (WWW File Share Pro 2.42) CAN-2004-0058 NOTE: not-for-us (Antivir) CAN-2004-0057 NOTE: covered by DSA-425 CAN-2004-0056 NOTE: not-for-us (Nortel Networks products) CAN-2004-0055 NOTE: covered by DSA-425 CAN-2004-0054 NOTE: not-for-us (Cisco IOS) CAN-2004-0053 NOTE: not-for-us (Multiple security gateways MIME parsing stuff) CAN-2004-0052 NOTE: not-for-us (Multiple security gateways MIME parsing stuff) CAN-2004-0051 NOTE: not-for-us (Multiple security gateways MIME parsing stuff) CAN-2004-0050 NOTE: not-for-us (Verity Ultraseek) CAN-2004-0048 NOTE: reserved CAN-2004-0047 NOTE: covered by DSA-430 CAN-2004-0046 NOTE: not-for-us (SnapStream PVS LITE) CAN-2004-0043 NOTE: not-for-us (Yahoo Instant Messenger) CAN-2004-0042 - vsftpd 2.0.1-1 NOTE: can't find any mention of the bug being fixed, but vsftpd doesn't NOTE: show the beaviour described in http://www.securitytracker.com/alerts/2004/Jan/1008628.html CAN-2004-0041 NOTE: covered by DSA-421 CAN-2004-0039 NOTE: not-for-us (Check Point Firewall) CAN-2004-0038 NOTE: not-for-us (McAfee) CAN-2004-0037 NOTE: not-for-us (FistClass Desktop Client) CAN-2004-0034 NOTE: not-for-us (Phorum) CAN-2004-0030 NOTE: not-for-us (PHPGEDVIEW) CAN-2004-0029 NOTE: not-for-us (Lotus Notes Domino) CAN-2004-0028 NOTE: covered by DSA-420 CAN-2004-0027 NOTE: reserved CAN-2004-0026 NOTE: reserved CAN-2004-0025 NOTE: reserved CAN-2004-0024 NOTE: reserved CAN-2004-0023 NOTE: reserved CAN-2004-0022 NOTE: reserved CAN-2004-0021 NOTE: reserved CAN-2004-0020 NOTE: reserved CAN-2004-0019 NOTE: reserved CAN-2004-0018 NOTE: reserved CAN-2004-0017 NOTE: covered by DSA-419 CAN-2004-0016 NOTE: covered by DSA-419 CAN-2004-0015 NOTE: covered by DSA-418 CAN-2004-0014 NOTE: covered by DSA-412 CAN-2004-0013 NOTE: covered by DSA-414 CAN-2004-0012 NOTE: reserved CAN-2004-0011 NOTE: covered by DSA-416 CAN-2004-0010 NOTE: covered by DSA-479 NOTE: fixed in 2.4.25-pre7 CAN-2004-0008 NOTE: covered by DSA-434 - gaim 1:0.75-2 CAN-2004-0007 NOTE: covered by DSA-434 - gaim 1:0.75-2 CAN-2004-0006 NOTE: covered by DSA-434 - gaim 1:0.75-2 CAN-2004-0005 NOTE: covered by DSA-434 CAN-2004-0003 NOTE: covered by DSA-479 NOTE: fixed in 2.4.26-rc4 CAN-2004-0002 NOTE: not-for-us (FreeBSD netinet) end claimed by greuff-guest begin claimed by pdwerryh-guest CAN-2003-1565 NOTE: rejected CAN-2003-1052 NOTE: not-for-us (IBM DB2) CAN-2003-1051 NOTE: not-for-us (IBM DB2) CAN-2003-1050 NOTE: not-for-us (IBM DB2) CAN-2003-1049 NOTE: not-for-us (IBM DB2) CAN-2003-1048 NOTE: not-for-us (microsoft) CAN-2003-1047 NOTE: rejected CAN-2003-1046 - bugzilla 2.16.4-1 CAN-2003-1045 - bugzilla 2.16.4-1 CAN-2003-1044 - bugzilla 2.16.4-1 CAN-2003-1043 - bugzilla 2.16.4-1 CAN-2003-1042 - bugzilla 2.16.4-1 CAN-2003-1041 NOTE: not-for-us (microsoft) CAN-2003-1040 NOTE: linux kernel kmod local DoS, fixed in all current kernels CAN-2003-1039 NOTE: not-for-us (SAP) CAN-2003-1038 NOTE: not-for-us (SAP) CAN-2003-1037 NOTE: not-for-us (SAP) CAN-2003-1036 NOTE: not-for-us (SAP) CAN-2003-1035 NOTE: not-for-us (SAP) CAN-2003-1034 NOTE: not-for-us (SAP) CAN-2003-1033 NOTE: not-for-us (SAP) CAN-2003-1032 NOTE: not-for-us (Pi3Web not in debian) CAN-2003-1031 NOTE: not-for-us (VBulletin) CAN-2003-1030 NOTE: not-for-us (Dameware) CAN-2003-1029 NOTE: covered by DSA-425 CAN-2003-1028 NOTE: not-for-us (microsoft) CAN-2003-1027 NOTE: not-for-us (microsoft) CAN-2003-1026 NOTE: not-for-us (microsoft) CAN-2003-1025 NOTE: not-for-us (microsoft) CAN-2003-1024 NOTE: not-for-us (solaris) CAN-2003-1023 NOTE: covered by DSA-424 CAN-2003-1022, NOTE: covered by DSA-416 CAN-2003-1021 NOTE: reserved CAN-2003-1020 - irssi-text 0.8.9-0.1 CAN-2003-1019 NOTE: reserved CAN-2003-1018 NOTE: not-for-us (AIX) CAN-2003-1017 - flashplugin-nonfree 7.0.25-1 CAN-2003-1016 TODO: Multiple vendor MIME quote bypass filtering TODO: unchecked CAN-2003-1015 - mime-tools 5.411-2 CAN-2003-1014 TODO: Multiple vendor MIME RFC822 comment bypass filtering TODO: unchecked CAN-2003-1013 - ethereal 0.10.0-1 CAN-2003-1012 - ethereal 0.10.0-1 CAN-2003-1011 NOTE: not-for-us (Apple) CAN-2003-1010 NOTE: not-for-us (Apple) CAN-2003-1009 NOTE: not-for-us (Apple) CAN-2003-1008 NOTE: not-for-us (Apple) CAN-2003-1007 NOTE: not-for-us (Apple) CAN-2003-1006 NOTE: not-for-us (Apple) CAN-2003-1005 NOTE: reserved CAN-2003-1004 NOTE: not-for-us (Cisco) end claimed by pdwerryh-guest CAN-2003-1003 NOTE: not-for-us (Cisco) CAN-2003-1002 NOTE: not-for-us (Cisco) CAN-2003-1001 NOTE: not-for-us (Cisco) CAN-2003-1000 - xchat 2.0.7 NOTE: apparently only DOS CAN-2003-0999 NOTE: not-for-us (Solaris) CAN-2003-0998 NOTE: not-for-us (Computer Associates (CA) Unicenter Remote Control) CAN-2003-0997 NOTE: not-for-us (Computer Associates (CA) Unicenter Remote Control) CAN-2003-0995 NOTE: not-for-us (Microsoft) CAN-2003-0992 - mailman 2.1.3 CAN-2003-0990 NOTE: apparenlty false/bad advisory NOTE: http://www.securityfocus.com/archive/1/348366 NOTE: possible problemsm before 1.4.2, 1.4.2 ok CAN-2003-0989 NOTE: covered by DSA-425 - tcpdump 3.8.1 CAN-2003-0987 - apache 1.3.29.0.2-5 CAN-2003-0986 NOTE: reserved CAN-2003-0985 NOTE: covered by DSA-413 NOTE: fixed in 2.4.24-rc1 CAN-2003-0984 NOTE: fixed in 2.4.24-rc1 CAN-2003-0983 NOTE: not-for-us (Cisco Unity on IBM servers) CAN-2003-0982 NOTE: not-for-us (Cisco) CAN-2003-0981 NOTE: not-for-us (visitorbook.pl) CAN-2003-0980 NOTE: not-for-us (visitorbook.pl) CAN-2003-0979 NOTE: not-for-us (visitorbook.pl) CAN-2003-0978 NOTE: not-for-us (gpgkeys_hkp) CAN-2003-0977 - cvs 1:1.11.10 CAN-2003-0976 NOTE: not-for-us (netware) CAN-2003-0975 NOTE: nor-for-us (MacOS) CAN-2003-0974 NOTE: not-for-us (Applied Watch Command Center) CAN-2003-0973 NOTE: covered by DSA-452 CAN-2003-0972 NOTE: covered by DSA-408 - screen 4.0.2-0.1 CAN-2003-0971 NOTE: covered by DSA-429 CAN-2003-0970 NOTE: not-for-us (Sun Fire B1600) CAN-2003-0969 NOTE: covered by DSA-411 CAN-2003-0968 NOTE: freeradius module in question is not built in debian package NOTE: buffer overflow apparently fixed in freeradius 1.0.1 CAN-2003-0967 - freeradius 0.9.2-4 CAN-2003-0965 NOTE: covered by DSA-436 CAN-2003-0964 NOTE: rejected CAN-2003-0963 - lftp 2.6.10 CAN-2003-0962 NOTE: covered by DSA-404 CAN-2003-0961 NOTE: covered by DSA-403 NOTE: do_brk hole NOTE: fixed in 2.4.23-pre7 CAN-2003-0960 NOTE: not-for-us (OpenCA) CAN-2003-0959 NOTE: reserved CAN-2003-0958 NOTE: reserved CAN-2003-0957 NOTE: reserved CAN-2003-0956 NOTE: reserved CAN-2003-0955 NOTE: not-for-us (OpenBSD) CAN-2003-0954 NOTE: reserved CAN-2003-0953 NOTE: reserved CAN-2003-0952 NOTE: reserved CAN-2003-0951 NOTE: not-for-us (HP-UX) CAN-2003-0950 NOTE: not-for-us (PeopleSoft PeopleTools) CAN-2003-0949 NOTE: covered by DSA-405 CAN-2003-0948 NOTE: not vulnerable, iwconfig not setuid/setgid in Debian. CAN-2003-0947 NOTE: not vulnerable, iwconfig not setuid/setgid in Debian. CAN-2003-0946 - clamav 0.65 CAN-2003-0945 NOTE: not-for-us (Web Database Manager in web-tools for SAP DB) CAN-2003-0944 NOTE: not-for-us (Web Database Manager in web-tools for SAP DB) CAN-2003-0943 NOTE: not-for-us (Web Database Manager in web-tools for SAP DB) CAN-2003-0942 NOTE: not-for-us (Web Database Manager in web-tools for SAP DB) CAN-2003-0941 NOTE: not-for-us (Web Database Manager in web-tools for SAP DB) CAN-2003-0940 NOTE: not-for-us (Web Database Manager in web-tools for SAP DB) CAN-2003-0939 NOTE: not-for-us (SAP database server (SAP DB)) CAN-2003-0938 NOTE: not-for-us (SAP database server (SAP DB)) CAN-2003-0937 NOTE: not-for-us (UnixWare) CAN-2003-0936 NOTE: not-for-us (PCAnywhere) CAN-2003-0935 - net-snmp 5.0.9 CAN-2003-0934 NOTE: not-for-us (Symbol Access Portable Data Terminal) CAN-2003-0933 NOTE: covered by DSA-398 CAN-2003-0932 NOTE: covered by DSA-400 CAN-2003-0931 NOTE: not-for-us (Sygate Enforcer) CAN-2003-0930 NOTE: not-for-us (Clearswift MAILsweeper) CAN-2003-0929 NOTE: not-for-us (Clearswift MAILsweeper) CAN-2003-0928 NOTE: not-for-us (Clearswift MAILsweeper) CAN-2003-0927 - ethereal 0.9.16-0.1 CAN-2003-0926 - ethereal 0.9.16-0.1 CAN-2003-0925 - ethereal 0.9.16-0.1 CAN-2003-0924 NOTE: covered by DSA-426 CAN-2003-0923 NOTE: reserved CAN-2003-0922 NOTE: reserved CAN-2003-0921 NOTE: reserved CAN-2003-0920 NOTE: reserved CAN-2003-0919 NOTE: reserved CAN-2003-0918 NOTE: reserved CAN-2003-0917 NOTE: reserved CAN-2003-0916 NOTE: reserved CAN-2003-0915 NOTE: reserved CAN-2003-0914 NOTE: covered by DSA-409 CAN-2003-0913 NOTE: not-for-us (MacOS) CAN-2003-0912 NOTE: reserved CAN-2003-0911 NOTE: reserved CAN-2003-0910 NOTE: not-for-us (Windows) CAN-2003-0909 NOTE: not-for-us (Windows) CAN-2003-0908 NOTE: not-for-us (Windows) CAN-2003-0907 NOTE: not-for-us (Windows) CAN-2003-0906 NOTE: not-for-us (Windows) CAN-2003-0904 NOTE: not-for-us (Windows) CAN-2003-0902 NOTE: covered by DSA-402 CAN-2003-0901 NOTE: covered by DSA-397 CAN-2003-0900 NOTE: reserved begin claimed by pdwerryh-guest CAN-2003-0899 NOTE: covered by DSA-396 CAN-2003-0898 NOTE: not-for-us (IBM DB2) CAN-2003-0897 NOTE: not-for-us (microsoft) CAN-2003-0896 NOTE: not-for-us (Sun/Java) CAN-2003-0895 NOTE: not-for-us (Apple) CAN-2003-0894 NOTE: not-for-us (Oracle) CAN-2003-0893 NOTE: reserved CAN-2003-0892 NOTE: reserved CAN-2003-0891 NOTE: reserved CAN-2003-0890 NOTE: reserved CAN-2003-0889 NOTE: reserved CAN-2003-0888 NOTE: reserved CAN-2003-0887 NOTE: reserved CAN-2003-0886 NOTE: covered by DSA-401 CAN-2003-0885 NOTE: reserved CAN-2003-0884 NOTE: reserved CAN-2003-0883 NOTE: not-for-us (Apple) CAN-2003-0882 NOTE: not-for-us (Apple) CAN-2003-0881 NOTE: not-for-us (Apple) CAN-2003-0880 NOTE: not-for-us (Apple) CAN-2003-0879 NOTE: rejected CAN-2003-0878 NOTE: not-for-us (Apple) CAN-2003-0877 NOTE: not-for-us (Apple) CAN-2003-0876 NOTE: not-for-us (Apple) CAN-2003-0875 [source package only] NOTE: openslp: slpd.all_init symlink vuln NOTE: this file is not used in Debian, so it's not a problem for us. NOTE: source package still distributes the file, however. TODO: submitted to BTS. waiting for response. - openslp (unfixed; bug #279973; only problem in source package) CAN-2003-0874 NOTE: not-for-us (Deskpro) CAN-2003-0873 NOTE: reserved CAN-2003-0872 NOTE: not-for-us (SCO) CAN-2003-0871 NOTE: not-for-us (Apple) CAN-2003-0870 NOTE: not-for-us (Opera) CAN-2003-0869 NOTE: reserved CAN-2003-0868 NOTE: reserved CAN-2003-0867 NOTE: rejected CAN-2003-0866 NOTE: covered by DSA-395 CAN-2003-0865 NOTE: covered by DSA-435 - mpg123 0.59r-15 CAN-2003-0864 - ircd-irc2 2.10.3p5-1 CAN-2003-0863 NOTE: php4, this bug appears not to have been fixed. NOTE: submitted to BTS on libapache-mod-php4 NOTE: developer claims there is no problem CAN-2003-0862 NOTE: rejected CAN-2003-0861 - php4 4:4.3.3-1 CAN-2003-0860 - php4 4:4.3.3-1 CAN-2003-0859 NOTE: affects glibc 2.2.4, Debian uses 2.3.2 CAN-2003-0858 NOTE: covered by DSA-415 CAN-2003-0857 NOTE: reserved CAN-2003-0856 NOTE: covered by DSA-492 - iproute 20010824-13.1 CAN-2003-0855 - pan 0.13.4-1 CAN-2003-0854 - coreutils 5.2.1-1 CAN-2003-0853 - coreutils 5.2.1-1 CAN-2003-0852 - sylpheed-claws 0.9.8claws-1 CAN-2003-0851 NOTE: affects openssl 0.9.6. Testing uses 0.9.7. CAN-2003-0850 NOTE: covered by DSA-410 - libnids1 1.18-1 CAN-2003-0849 - cfengine2 2.0.9+2.1.0b3-1 CAN-2003-0848 NOTE: covered by DSA-428 - slocate 2.7-3 CAN-2003-0847 NOTE: not-for-us (SuSE) CAN-2003-0846 NOTE: not-for-us (SuSE) CAN-2003-0845 NOTE: not-for-us (JBoss) CAN-2003-0844 NOTE: libapache-mod-gzip, vulnerable only when compiled in debug mode NOTE: Debian doesn't enable MOD_GZIP_DEBUG1. CAN-2003-0843 NOTE: libapache-mod-gzip, vulnerable only when compiled in debug mode NOTE: Debian doesn't enable MOD_GZIP_DEBUG1. CAN-2003-0842 NOTE: libapache-mod-gzip, vulnerable only when compiled in debug mode NOTE: Debian doesn't enable MOD_GZIP_DEBUG1. CAN-2003-0841 NOTE: not-for-us (Peoplesoft) CAN-2003-0840 NOTE: not-for-us (HPUX) CAN-2003-0839 NOTE: not-for-us (microsoft) CAN-2003-0838 NOTE: not-for-us (microsoft) CAN-2003-0837 NOTE: not-for-us (IBM DB2) CAN-2003-0836 NOTE: not-for-us (IBM DB2) CAN-2003-0835 NOTE: not-for-us (mplayer) CAN-2003-0834 NOTE: not-for-us (CDE) CAN-2003-0833 NOTE: covered by DSA-392 - webfs 1.20 CAN-2003-0832 NOTE: covered by DSA-392 - webfs 1.20 CAN-2003-0831 - proftpd 1.2.9-1 CAN-2003-0830 NOTE: covered by DSA-390 NOTE: marbles package not in testing or unstable CAN-2003-0829 NOTE: reserved CAN-2003-0828 NOTE: covered by DSA-391 - freesweep 0.88-4.1 CAN-2003-0827 NOTE: not-for-us (IBM DB2) CAN-2003-0826 - lsh-server 1.4.2-6 CAN-2003-0824 NOTE: not-for-us (microsoft) CAN-2003-0823 NOTE: not-for-us (microsoft) CAN-2003-0822 NOTE: not-for-us (microsoft) CAN-2003-0821 NOTE: not-for-us (microsoft) CAN-2003-0820 NOTE: not-for-us (microsoft) CAN-2003-0819 NOTE: not-for-us (microsoft) CAN-2003-0818 NOTE: not-for-us (microsoft) CAN-2003-0817 NOTE: not-for-us (microsoft) CAN-2003-0816 NOTE: not-for-us (microsoft) CAN-2003-0815 NOTE: not-for-us (microsoft) CAN-2003-0814 NOTE: not-for-us (microsoft) CAN-2003-0813 NOTE: not-for-us (microsoft) CAN-2003-0812 NOTE: not-for-us (microsoft) CAN-2003-0811 NOTE: reserved CAN-2003-0810 NOTE: reserved CAN-2003-0809 NOTE: not-for-us (microsoft) CAN-2003-0808 NOTE: reserved CAN-2003-0807 NOTE: not-for-us (microsoft) CAN-2003-0806 NOTE: not-for-us (microsoft) CAN-2003-0805 NOTE: covered by DSA-387 NOTE: gopherd not in testing or unstable (deprecated) CAN-2003-0804 NOTE: not-for-us (BSD) CAN-2003-0803 NOTE: not-for-us (Nokia) CAN-2003-0802 NOTE: not-for-us (Nokia) CAN-2003-0801 NOTE: not-for-us (Nokia) CAN-2003-0800 NOTE: reserved end claimed by pdwerryh-guest CAN-2003-0799 NOTE: reserved CAN-2003-0798 NOTE: reserved CAN-2003-0797 NOTE: not-for-us (SGI IRIX) CAN-2003-0796 NOTE: not-for-us (SGI IRIX) CAN-2003-0795 NOTE: covered by DSA-415 CAN-2003-0794 - gdm 2.4.4.4 CAN-2003-0793 - gdm 2.4.4.4 CAN-2003-0792 - fetchmail 6.2.5 CAN-2003-0791 NOTE: reserved CAN-2003-0790 NOTE: rejected CAN-2003-0789 - apache2 2.0.48 CAN-2003-0788 - cupsys 1.1.19 CAN-2003-0787 -ssh 1:3.7.1p2 CAN-2003-0786 -ssh 1:3.7.1p2 CAN-2003-0785 NOTE: covered by DSA-389 CAN-2003-0784 NOTE: not-for-us (IBM TSM) CAN-2003-0783 NOTE: covered by DSA-385 CAN-2003-0782 NOTE: covered by DSA-467 CAN-2003-0781 NOTE: covered by DSA-467 CAN-2003-0780 NOTE: covered by DSA-381 CAN-2003-0779 - asterisk 0.7.0 CAN-2003-0778 NOTE: covered by DSA-379 CAN-2003-0777 NOTE: covered by DSA-379 CAN-2003-0776 NOTE: covered by DSA-379 CAN-2003-0775 NOTE: covered by DSA-379 CAN-2003-0774 NOTE: covered by DSA-379 CAN-2003-0773 NOTE: covered by DSA-379 CAN-2003-0772 NOTE: not-for-us (WS_FTP server) CAN-2003-0771 - libapache-gallery-perl 0.7 CAN-2003-0770 NOTE: not-for-us (IkonBoard not in Debian) CAN-2003-0769 NOTE: not-for-us (ICQ Web Front) CAN-2003-0768 NOTE: not-for-us (microsoft) CAN-2003-0767 NOTE: not-for-us (RogerWilco not in Debian) CAN-2003-0766 NOTE: not-for-us (ftp desktop (windows)) CAN-2003-0765 NOTE: not-for-us (winamp) CAN-2003-0764 NOTE: not-for-us (Escapade Scripting Engine (ESP) not in Debian) CAN-2003-0763 NOTE: not-for-us (Escapade Scripting Engine (ESP) not in Debian) CAN-2003-0762 NOTE: not-for-us (foxweb) CAN-2003-0761 - asterisk 0.5.0 CAN-2003-0760 NOTE: not-for-us (optisoft blubster) CAN-2003-0759 NOTE: not-for-us (IBM DB2) CAN-2003-0758 NOTE: not-for-us (IBM DB2) CAN-2003-0757 NOTE: not-for-us (check point firewall) CAN-2003-0756 NOTE: not-for-us (sitebuilder not in Debian) CAN-2003-0755 NOTE: not-for-us (gtkftpd not in Debian) CAN-2003-0754 NOTE: not-for-us (newsPHP not in Debian) CAN-2003-0753 NOTE: not-for-us (newsPHP not in Debian) CAN-2003-0752 NOTE: not-for-us (AttilaPHP not in Debian) CAN-2003-0751 NOTE: not-for-us (PY-Membres not in Debian) CAN-2003-0750 NOTE: not-for-us (PY-Membres not in Debian) CAN-2003-0749 NOTE: not-for-us (SAP) CAN-2003-0748 NOTE: not-for-us (SAP) CAN-2003-0747 NOTE: not-for-us (SAP) CAN-2003-0746 NOTE: not-for-us (Distributed Computing Environment (DCE) not in Deb) CAN-2003-0745 NOTE: not-for-us (castlerock SNMPc) CAN-2003-0744 - leafnode 1.9.42 CAN-2003-0743 NOTE: covered by DSA-376 CAN-2003-0742 NOTE: not-for-us (SCO) CAN-2003-0741 NOTE: reserved CAN-2003-0740 - stunnel 2:3.26 - stunnel4 2:4.04 CAN-2003-0739 NOTE: not-for-us (VMware) CAN-2003-0738 NOTE: not-for-us (phpWebSite not in Debian) CAN-2003-0737 NOTE: not-for-us (phpWebSite not in Debian) CAN-2003-0736 NOTE: not-for-us (phpWebSite not in Debian) CAN-2003-0735 NOTE: not-for-us (phpWebSite not in Debian) CAN-2003-0734 - libpam-ldap 164-1 - libnss-ldap 207-1 CAN-2003-0733 NOTE: not-for-us (BEA weblogic) CAN-2003-0732 NOTE: not-for-us (cisco) CAN-2003-0731 NOTE: not-for-us (cisco) CAN-2003-0730 NOTE: covered by DSA-380 CAN-2003-0729 NOTE: not-for-us (tellurian tftpdNT) CAN-2003-0728 - horde2 2.2.4 CAN-2003-0727 NOTE: not-for-us (oracle) CAN-2003-0726 NOTE: not-for-us (RealOne player) CAN-2003-0725 NOTE: not-for-us (Real Networks Server / Helix Server) CAN-2003-0724 NOTE: not-for-us (HP Tru64) CAN-2003-0723 - gkrellmd 2.1.14 CAN-2003-0722 NOTE: not-for-us (solaris) CAN-2003-0721 - pine 4.58 - pine-tracker 4.58 CAN-2003-0720 - pine 4.58 - pine-tracker 4.58 CAN-2003-0719 NOTE: not-for-us (microsoft) CAN-2003-0718 NOTE: not-for-us (microsoft) CAN-2003-0717 NOTE: not-for-us (microsoft) CAN-2003-0716 NOTE: reserved CAN-2003-0715 NOTE: not-for-us (microsoft) CAN-2003-0714 NOTE: not-for-us (microsoft) CAN-2003-0713 NOTE: reserved CAN-2003-0712 NOTE: not-for-us (microsoft) CAN-2003-0711 NOTE: not-for-us (pchealth for windows) CAN-2003-0710 NOTE: reserved CAN-2003-0709 - whois 4.6.7 CAN-2003-0708 NOTE: covered by DSA-375 CAN-2003-0707 NOTE: covered by DSA-375 CAN-2003-0706 NOTE: covered by DSA-378 CAN-2003-0705 NOTE: covered by DSA-378 CAN-2003-0704 NOTE: not-for-us (KisMAC for Mac OS X) CAN-2003-0703 NOTE: not-for-us (KisMAC for Mac OS X) CAN-2003-0702 NOTE: not-for-us (microsoft) CAN-2003-0701 NOTE: not-for-us (microsoft) CAN-2003-0700 NOTE: fixed in 2.4.22-pre3 CAN-2003-0699 NOTE: fixed in 2.4.21-rc2 CAN-2003-0698 NOTE: reserved - exim 3.36-8 CAN-2003-0697 NOTE: not-for-us (AIX) CAN-2003-0696 NOTE: not-for-us (AIX) CAN-2003-0695 NOTE: covered by DSA-382 NOTE: covered by DSA-383 CAN-2003-0694 NOTE: covered by DSA-384 CAN-2003-0693 NOTE: covered by DSA-382 NOTE: covered by DSA-383 - openssh 1:3.6.1p2-6.0 CAN-2003-0692 NOTE: covered by DSA-388 CAN-2003-0691 NOTE: reserved CAN-2003-0690 NOTE: covered by DSA-388 NOTE: covered by DSA-443 CAN-2003-0689 - libc6 2.2.5 CAN-2003-0688 - sendmail 8.12.9 CAN-2003-0687 NOTE: rejected CAN-2003-0686 NOTE: covered by DSA-374 CAN-2003-0685 NOTE: covered by DSA-372 CAN-2003-0684 NOTE: reserved CAN-2003-0683 NOTE: not-for-us (SGI) CAN-2003-0682 NOTE: covered by DSA-382 NOTE: covered by DSA-383 - openssh 1:3.6.1p2-9 CAN-2003-0681 NOTE: covered by DSA-384 CAN-2003-0680 NOTE: not-for-us (SGI IRIX) CAN-2003-0679 NOTE: not-for-us (SGI IRIX) CAN-2003-0678 NOTE: reserved CAN-2003-0677 NOTE: not-for-us (Cisco) CAN-2003-0676 NOTE: not-for-us (Sun iPlanet) CAN-2003-0672 NOTE: covered by DSA-370 CAN-2003-0671 NOTE: not-for-us (sustworks IPNetSentryX) CAN-2003-0670 NOTE: not-for-us (sustworks IPNetSentryX) CAN-2003-0669 NOTE: not-for-us (solaris) CAN-2003-0668 NOTE: reserved CAN-2003-0667 NOTE: reserved CAN-2003-0666 NOTE: not-for-us (microsoft) CAN-2003-0665 NOTE: not-for-us (microsoft) CAN-2003-0664 NOTE: not-for-us (microsoft) CAN-2003-0663 NOTE: not-for-us (microsoft) CAN-2003-0662 NOTE: not-for-us (microsoft) CAN-2003-0661 NOTE: not-for-us (microsoft) CAN-2003-0660 NOTE: not-for-us (microsoft) CAN-2003-0659 NOTE: not-for-us (microsoft) CAN-2003-0658 NOTE: not-for-us (docview / caldera) CAN-2003-0657 NOTE: covered by DSA-365 CAN-2003-0656 NOTE: covered by DSA-366 CAN-2003-0655 - cdrecord 4:2.0+a18-1 CAN-2003-0654 NOTE: covered by DSA-373 CAN-2003-0653 NOTE: not-for-us (NetBSD) CAN-2003-0652 NOTE: covered by DSA-367 CAN-2003-0651 NOTE: not-for-us (mod_mylo for apache) not in debian CAN-2003-0650 NOTE: not-for-us (gamespy) CAN-2003-0649 NOTE: covered by DSA-368 CAN-2003-0648 NOTE: covered by DSA-472 CAN-2003-0647 NOTE: not-for-us (Cisco) CAN-2003-0646 NOTE: not-for-us (ActiveX) CAN-2003-0645 NOTE: covered by DSA-364 CAN-2003-0644 NOTE: reserved CAN-2003-0643 NOTE: reserved NOTE: covered by DSA-358 NOTE: fixed in 2.4.22-pre10 (Introduced in 2.4.3-pre3) CAN-2003-0642 NOTE: not-for-us (Watchguard / win) CAN-2003-0641 NOTE: not-for-us (Watchguard / win) CAN-2003-0640 NOTE: not-for-us (BEA WebLogic) CAN-2003-0639 NOTE: not-for-us (novell ichain) CAN-2003-0638 NOTE: not-for-us (novell ichain) CAN-2003-0637 NOTE: not-for-us (novell ichain) CAN-2003-0636 NOTE: not-for-us (novell ichain) CAN-2003-0635 NOTE: not-for-us (novell ichain) CAN-2003-0634 NOTE: not-for-us (oracle) CAN-2003-0633 NOTE: not-for-us (oracle) CAN-2003-0632 NOTE: not-for-us (oracle) CAN-2003-0631 NOTE: not-for-us (VMware) CAN-2003-0630 NOTE: covered by DSA-359 CAN-2003-0629 NOTE: not-for-us (peoplesoft) CAN-2003-0628 NOTE: not-for-us (peoplesoft) CAN-2003-0627 NOTE: reserved CAN-2003-0626 NOTE: reserved CAN-2003-0625 NOTE: covered by DSA-360 CAN-2003-0624 NOTE: not-for-us (BEA WebLogic) CAN-2003-0623 NOTE: not-for-us (BEA Tuxedo) CAN-2003-0622 NOTE: not-for-us (BEA Tuxedo) CAN-2003-0621 NOTE: not-for-us (BEA Tuxedo) CAN-2003-0620 NOTE: covered by DSA-364 CAN-2003-0619 NOTE: covered by DSA-358 NOTE: fixed in 2.4.21-pre3 CAN-2003-0618 NOTE: covered by DSA-431 CAN-2003-0617 NOTE: covered by DSA-362 CAN-2003-0616 NOTE: not-for-us (McAfee) CAN-2003-0615 NOTE: covered by DSA-371 CAN-2003-0614 NOTE: covered by DSA-355 CAN-2003-0613 NOTE: covered by DSA-369 CAN-2003-0612 - crafty 19.3-1 CAN-2003-0611 NOTE: covered by DSA-356 CAN-2003-0610 NOTE: not-for-us (McAfee) CAN-2003-0609 NOTE: not-for-us (Solaris) CAN-2003-0608 NOTE: reserved CAN-2003-0607 NOTE: covered by DSA-354 CAN-2003-0606 NOTE: covered by DSA-353 - sup 1.8-9 CAN-2003-0605 NOTE: not-for-us (Microsoft) CAN-2003-0604 NOTE: not-for-us (Microsoft) CAN-2003-0603 - bugzilla 2.16.3 NOTE: in 2.17.x : we need at least 2.17.4 CAN-2003-0602 - bugzilla 2.16.3 NOTE: in 2.17.x : we need at least 2.17.4 CAN-2003-0601 NOTE: not-for-us (Apple) CAN-2003-0600 NOTE: reserved CAN-2003-0599 NOTE: covered by DSA-365 CAN-2003-0598 NOTE: rejected CAN-2003-0597 NOTE: not-for-us (Unixware) CAN-2003-0596 - fdclone 2.02a CAN-2003-0595 NOTE: not-for-us (WiTango Application Server and Tango 2000) CAN-2003-0594 NOTE: cannot find reference to it being fixed. TODO: check CAN-2003-0593 NOTE: not-for-us (opera) CAN-2003-0592 NOTE: covered by DSA-459 CAN-2003-0591 NOTE: rejected CAN-2003-0590 NOTE: not-for-us (Splatt Forum) CAN-2003-0589 NOTE: not-for-us (Digi-ads) CAN-2003-0588 NOTE: not-for-us (Digi-news) CAN-2003-0587 NOTE: not-for-us (Infopop Ultimate Bulletin Board (UBB)) CAN-2003-0586 NOTE: not-for-us (Brooky eStore) CAN-2003-0585 NOTE: not-for-us (Brooky eStore) CAN-2003-0584 NOTE: not-for-us (BRU) CAN-2003-0583 NOTE: not-for-us (BRU) CAN-2003-0582 NOTE: rejected CAN-2003-0581 NOTE: covered by DSA-360 CAN-2003-0580 NOTE: not-for-us (IBM U2 UniVerse) CAN-2003-0579 NOTE: not-for-us (IBM U2 UniVerse) CAN-2003-0578 NOTE: not-for-us (IBM U2 UniVerse) CAN-2003-0577 - mpg123 0.59r-1 CAN-2003-0576 NOTE: not-for-us (IRIX) CAN-2003-0575 NOTE: not-for-us (IRIX) CAN-2003-0574 NOTE: not-for-us (IRIX) CAN-2003-0573 NOTE: not-for-us (IRIX) CAN-2003-0572 NOTE: not-for-us (IRIX) CAN-2003-0571 NOTE: reserved CAN-2003-0570 NOTE: reserved CAN-2003-0569 NOTE: reserved CAN-2003-0568 NOTE: reserved CAN-2003-0567 NOTE: not-for-us (Cisco) CAN-2003-0566 NOTE: reserved CAN-2003-0565 NOTE: affects many implementations of the X.400 protocol TODO: see if anything in debian uses X.400 and is vulnerable. CAN-2003-0564 NOTE: affects multiple S/MIME implementations NOTE: checked current mozilla, which contains safe NSS 3.9.1 - mozilla 2:1.7.3 TODO: see if anything else in debian uses S/MIME and is vulnerable. CAN-2003-0563 NOTE: reserved CAN-2003-0562 NOTE: not-for-us (Novell Netware) CAN-2003-0561 NOTE: not-for-us (IglooFTP) CAN-2003-0560 NOTE: not-for-us (VP-ASP) CAN-2003-0559 NOTE: not-for-us (phpforum) CAN-2003-0558 NOTE: not-for-us (LeapFTP) CAN-2003-0557 NOTE: not-for-us (StoreFront) CAN-2003-0556 NOTE: not-for-us (Polycom MGC) CAN-2003-0555 NOTE: imagemagick %x exploit failed with 6.0.6.2-1.5 CAN-2003-0554 NOTE: not-for-us (NeoModus Direct Connect) CAN-2003-0553 NOTE: not-for-us (Netscape) CAN-2003-0552 NOTE: covered by DSA-358 NOTE: fixed in 2.4.22-pre3 CAN-2003-0551 NOTE: covered by DSA-358 NOTE: fixed in 2.4.22-pre3 CAN-2003-0550 NOTE: covered by DSA-358 NOTE: fixed in 2.4.22-pre3 CAN-2003-0549 - gdm 2.4.1.5 CAN-2003-0548 - gdm 2.4.1.5 CAN-2003-0547 - gdm 2.4.1.5 CAN-2003-0546 NOTE: not-for-us (up2date) CAN-2003-0545 NOTE: covered by DSA-393 CAN-2003-0544 NOTE: covered by DSA-393 CAN-2003-0543 NOTE: covered by DSA-393 CAN-2003-0542 - apache2 2.0.48 - apache 1.3.29 CAN-2003-0541 NOTE: does not affect evolution on debian - gtkhtml (unfixed; bug #279726) CAN-2003-0540 NOTE: covered by DSA-363 CAN-2003-0539 NOTE: covered by DSA-343 CAN-2003-0538 NOTE: covered by DSA-342 CAN-2003-0537 NOTE: covered by DSA-341 CAN-2003-0536 NOTE: covered by DSA-346 CAN-2003-0535 NOTE: covered by DSA-345 CAN-2003-0534 NOTE: reserved CAN-2003-0533 NOTE: not-for-us (Microsoft) CAN-2003-0532 NOTE: not-for-us (Microsoft) CAN-2003-0531 NOTE: not-for-us (Microsoft) CAN-2003-0530 NOTE: not-for-us (Microsoft) CAN-2003-0529 NOTE: reserved CAN-2003-0528 NOTE: not-for-us (Microsoft) CAN-2003-0527 NOTE: reserved CAN-2003-0526 NOTE: not-for-us (Microsoft) CAN-2003-0525 NOTE: not-for-us (Microsoft) CAN-2003-0524 NOTE: appears specific to the knoppix CD CAN-2003-0523 NOTE: not-for-us (ProductCart) CAN-2003-0522 NOTE: not-for-us (ProductCart) CAN-2003-0521 NOTE: not-for-us (cPanel is not our cpanel) CAN-2003-0520 NOTE: not-for-us (Trillian) CAN-2003-0519 NOTE: not-for-us (Microsoft) CAN-2003-0518 NOTE: not-for-us (MacOS) CAN-2003-0517 - mgetty 1.1.29 CAN-2003-0516 - mgetty 1.1.29 CAN-2003-0515 NOTE: covered by DSA-347 CAN-2003-0514 NOTE: not-for-us (Safari) CAN-2003-0513 NOTE: not-for-us (MSIE) CAN-2003-0512 NOTE: not-for-us (Cisco) CAN-2003-0511 NOTE not-for-us (Cisco Aironet AP1x00 Series Wireless devices) CAN-2003-0510 NOTE: not-for-us (ezbounce) CAN-2003-0509 NOTE: not-for-us (Cyberstrong eShop) CAN-2003-0508 NOTE: not-for-us (acroread) CAN-2003-0507 NOTE: not-for-us (Microsoft) CAN-2003-0506 NOTE: not-for-us (Microsoft) CAN-2003-0505 NOTE: not-for-us (Microsoft) CAN-2003-0504 NOTE: covered by DSA-365 CAN-2003-0503 NOTE: not-for-us (Microsoft) CAN-2003-0502 NOTE: not-for-us (Apple Quicktime) CAN-2003-0501 NOTE: covered by DSA-358 NOTE: fixed in 2.4.22-pre10 CAN-2003-0500 NOTE: covered by DSA-338 CAN-2003-0499 NOTE: covered by DSA-335 CAN-2003-0498 NOTE: not-for-us (Intersystems Cache database) CAN-2003-0497 NOTE: not-for-us (Intersystems Cache database) CAN-2003-0496 NOTE: not-for-us (Microsoft) CAN-2003-0495 NOTE: not-for-us (lednews; not in debian) CAN-2003-0494 NOTE: not-for-us (snitz forums; not in debian) CAN-2003-0493 NOTE: not-for-us (snitz forums; not in debian) CAN-2003-0492 NOTE: not-for-us (snitz forums; not in debian) CAN-2003-0491 NOTE: not-for-us (xoop; not in debian) CAN-2003-0490 NOTE: not-for-us (Dantz Retrospect) CAN-2003-0489 NOTE: covered by DSA-330 CAN-2003-0488 NOTE: not-for-us (Kerio Mail server) CAN-2003-0487 NOTE: not-for-us (Kerio Mail server) CAN-2003-0486 - phpbb2 2.0.6 CAN-2003-0485 NOTE: not-for-us (Progress 4GL Compiler) CAN-2003-0484 - phpbb2 2.0.6d-3 CAN-2003-0483 NOTE: not-for-us (XMB Forum) CAN-2003-0482 - tutos 1.1.20030715-1 CAN-2003-0481 - tutos 1.1.20030715-1 CAN-2003-0480 NOTE: not-for-us (VMware) CAN-2003-0479 NOTE: not-for-us (WebBBS; not in debian) CAN-2003-0478 NOTE: not-for-us (bahamut and other irc daemons; not in debian) CAN-2003-0477 - wzdftpd 0.2 CAN-2003-0476 NOTE: covered by DSA-358 NOTE: fixed in 2.4.22-pre4 CAN-2003-0475 NOTE: not-for-us (iWeb server) CAN-2003-0474 NOTE: not-for-us (iWeb server) CAN-2003-0473 NOTE: not-for-us (SGI IRIX) CAN-2003-0472 NOTE: not-for-us (SGI IRIX) CAN-2003-0471 NOTE: not-for-us (webadmin / win) CAN-2003-0470 NOTE: not-for-us (symantec activex) CAN-2003-0469 NOTE: not-for-us (microsoft) CAN-2003-0468 NOTE: covered by DSA-363 CAN-2003-0467 NOTE: fixed in linux 2.4.21 CAN-2003-0466 NOTE: covered by DSA-357 CAN-2003-0465 strncpy in kernel does not pad with zeroes - kernel-source-2.4.27 (unfixed; bug #280492) NOTE: generic .c version fixed in 2.6.x but not in 2.4.x NOTE: arch specific asm versions: NOTE: x86 is not affected NOTE: ppc32 fixed in 2.4.22-rc4 CAN-2003-0464 NOTE: fixed in linux 2.4.22-pre8 CAN-2003-0463 NOTE: reserved CAN-2003-0462 NOTE: covered by DSA-358 CAN-2003-0461 NOTE: covered by DSA-358 CAN-2003-0460 NOTE: not-for-us (apache for win and os/2) CAN-2003-0459 NOTE: covered by DSA-361 CAN-2003-0458 NOTE: not-for-us (HP) CAN-2003-0457 NOTE: reserved - mysql-dfsg 4.0.21-4 CAN-2003-0456 NOTE: not-for-us (visnetic website) CAN-2003-0455 NOTE: covered by DSA-331 CAN-2003-0454 NOTE: covered by DSA-334 CAN-2003-0453 NOTE: covered by DSA-348 CAN-2003-0452 NOTE: covered by DSA-329 CAN-2003-0451 NOTE: covered by DSA-327 CAN-2003-0450 NOTE: covered by DSA-321 CAN-2003-0449 NOTE: not-for-us (progress database) CAN-2003-0448 NOTE: not-for-us (portmon; not in debian) CAN-2003-0447 NOTE: not-for-us (microsoft) CAN-2003-0446 NOTE: not-for-us (microsoft) CAN-2003-0445 NOTE: covered by DSA-328 CAN-2003-0444 NOTE: covered by DSA-337 CAN-2003-0443 NOTE: reserved CAN-2003-0442 NOTE: covered by DSA-351 CAN-2003-0441 NOTE: covered by DSA-326 CAN-2003-0440 NOTE: covered by DSA-339 CAN-2003-0439 NOTE: reserved CAN-2003-0438 NOTE: covered by DSA-325 CAN-2003-0437 - mnogosearch-common 3.2.11 CAN-2003-0436 - mnogosearch-common 3.2.11 CAN-2003-0435 NOTE: covered by DSA-322 CAN-2003-0434 NOTE: various pdf viewers NOTE: kpdf does not seem to support hyperlinks; so not vulnerable NOTE: gpdf 2.8.0 does not seem to be vulnerable - xpdf 2.02pl1-1 CAN-2003-0433 NOTE: covered by DSA-315 CAN-2003-0432 NOTE: covered by DSA-324 CAN-2003-0431 NOTE: covered by DSA-324 CAN-2003-0430 - ethereal 0.9.13 CAN-2003-0429 NOTE: covered by DSA-324 CAN-2003-0428 NOTE: covered by DSA-324 CAN-2003-0427 NOTE: covered by DSA-320 CAN-2003-0426 NOTE: not-for-us (Apple) CAN-2003-0425 NOTE: not-for-us (Apple) CAN-2003-0424 NOTE: not-for-us (Apple) CAN-2003-0423 NOTE: not-for-us (Apple) CAN-2003-0422 NOTE: not-for-us (Apple) CAN-2003-0421 NOTE: not-for-us (Apple) CAN-2003-0420 NOTE: reserved CAN-2003-0419 NOTE: not-for-us (SMC) CAN-2003-0418 NOTE: only linux 2.0.x CAN-2003-0417 NOTE: not-for-us (Son hServer) CAN-2003-0416 NOTE: not-for-us (bandmin; not in Debian) CAN-2003-0415 NOTE: not-for-us (Remote PC Access) CAN-2003-0414 NOTE: not-for-us (Sun ONE) CAN-2003-0413 NOTE: not-for-us (Sun ONE) CAN-2003-0412 NOTE: not-for-us (Sun ONE) CAN-2003-0411 NOTE: not-for-us (Sun ONE) CAN-2003-0410 NOTE: not-for-us (AnalogX proxy) CAN-2003-0409 NOTE: not-for-us (BRS WebWeaver) CAN-2003-0408 NOTE: not-for-us (Uptimes Project upclient; not in Debian) CAN-2003-0407 - gbatnav 1.0.4-4 CAN-2003-0406 NOTE: not-for-us (PalmVNC) CAN-2003-0405 NOTE: not-for-us (Vignette) CAN-2003-0404 NOTE: not-for-us (Vignette) CAN-2003-0403 NOTE: not-for-us (Vignette) CAN-2003-0402 NOTE: not-for-us (Vignette) CAN-2003-0401 NOTE: not-for-us (Vignette) CAN-2003-0400 NOTE: not-for-us (Vignette / AIX) CAN-2003-0399 NOTE: not-for-us (Vignette StoryServer) CAN-2003-0398 NOTE: not-for-us (Vignette StoryServer) CAN-2003-0397 NOTE: not-for-us (FastTrack network code (Kazaa)) CAN-2003-0396 - linux-arm 2.4.1 CAN-2003-0395 NOTE: not-for-us (Ultimate PHP Board) CAN-2003-0394 NOTE: not-for-us (BLNews) CAN-2003-0393 NOTE: not-for-us (Privacyware Privatefirewall) CAN-2003-0392 NOTE: not-for-us (ST FTP Service (DOS)) CAN-2003-0391 NOTE: not-for-us (Magic WinMail Server) CAN-2003-0390 - opt 3.19 CAN-2003-0389 NOTE: not-for-us (RSA ACE/Agent) CAN-2003-0388 NOTE: pam is not vulnerable in default confuguration NOTE: pam is not vulnerable at all in sarge, according to maintainer CAN-2003-0387 NOTE: reserved CAN-2003-0386 NOTE: fixed in current openssh, which always does reverse mapping now CAN-2003-0385 NOTE: covered by DSA-310 - xaos 3.1r-4 CAN-2003-0384 NOTE: reserved CAN-2003-0382 NOTE: covered by DSA-309 CAN-2003-0381 NOTE: covered by DSA-323 CAN-2003-0380 NOTE: covered by DSA-314 CAN-2003-0379 NOTE: not-for-us (MaxOS) CAN-2003-0378 NOTE: not-for-us (MaxOS) CAN-2003-0377 NOTE: not-for-us (iisPROTECT) CAN-2003-0376 NOTE: not-for-us (Eudora) CAN-2003-0375 NOTE: not-for-us (XMBforum aka Partagium)) CAN-2003-0374 - nessus 2.0.6 CAN-2003-0373 - nessus 2.0.6 CAN-2003-0372 - nessus 2.0.6 CAN-2003-0371 NOTE: not-for-us (Prishtina FTP client) CAN-2003-0370 NOTE: covered by DSA-361 CAN-2003-0369 NOTE: reserved CAN-2003-0368 NOTE: not-for-us (Nokia Gateway GPRS) CAN-2003-0367 NOTE: covered by DSA-308 CAN-2003-0366 NOTE: covered by DSA-318 CAN-2003-0365 NOTE: not-for-us (ICQLite) CAN-2003-0364 NOTE: covered by DSA-336 CAN-2003-0363 NOTE: reserved CAN-2003-0362 NOTE: covered by DSA-307 CAN-2003-0361 NOTE: covered by DSA-307 CAN-2003-0360 NOTE: covered by DSA-307 CAN-2003-0359 NOTE: covered by DSA-316 CAN-2003-0358 NOTE: covered by DSA-316 CAN-2003-0357 NOTE: covered by DSA-313 CAN-2003-0356 NOTE: covered by DSA-313 CAN-2003-0355 NOTE: not-for-us (Safari) CAN-2003-0354 - gs-gpl 7.07 CAN-2003-0353 NOTE: not-for-us (Microsoft) CAN-2003-0352 NOTE: not-for-us (Microsoft) CAN-2003-0351 NOTE: rejected CAN-2003-0350 NOTE: not-for-us (Microsoft) CAN-2003-0349 NOTE: not-for-us (Microsoft) CAN-2003-0348 NOTE: not-for-us (Microsoft) CAN-2003-0347 NOTE: not-for-us (Microsoft) CAN-2003-0346 NOTE: not-for-us (Microsoft) CAN-2003-0345 NOTE: not-for-us (Microsoft) CAN-2003-0344 NOTE: not-for-us (Microsoft) CAN-2003-0343 NOTE: not-for-us (BlackMoon FTP Server) CAN-2003-0342 NOTE: not-for-us (BlackMoon FTP Server) CAN-2003-0341 NOTE: not-for-us (Owl Intranet Engine) CAN-2003-0340 NOTE: not-for-us (Puresecure) CAN-2003-0339 NOTE: not-for-us (WsMp3) CAN-2003-0338 NOTE: not-for-us (WsMp3) CAN-2003-0337 NOTE: not-for-us (lsadmin) CAN-2003-0336 NOTE: not-for-us (Eudora) CAN-2003-0335 NOTE: not-for-us (Slaskware specific) CAN-2003-0334 - ircii-pana 1:1.0-0c19.20030512-1 CAN-2003-0333 NOTE: not-for-us (C-Kermit on HP-UX) CAN-2003-0332 NOTE: not-for-us (BadBlue) CAN-2003-0331 NOTE: not-for-us (ttForum) CAN-2003-0330 NOTE: maelstrom in sarge tests not vulnerable to exploit. Unsure when fixed. CAN-2003-0329 NOTE: not-for-us (CesarFTP) CAN-2003-0328 NOTE: covered by DSA-306 CAN-2003-0327 NOTE: not-for-us (Sybase Adaptive Server Enterprise) CAN-2003-0326 NOTE: bug does exist in slocate. NOTE: only impacts security if kernel has been recompiled to allow NOTE: an absurd 536870912 bytes of command line arguments. This is NOTE: very unlikely, and if you do exploit it, you get only slocate NOTE: gid. CAN-2003-0325 NOTE: maelstrom in sarge tests not vulnerable to exploit. Unsure when fixed. CAN-2003-0324 NOTE: covered by DSA-287 CAN-2003-0323 NOTE: covered by DSA-291 CAN-2003-0322 NOTE: covered by DSA-306 CAN-2003-0320 NOTE: covered by DSA-306 CAN-2003-0320 NOTE: not-for-us (ttCMS) CAN-2003-0319 NOTE: not-for-us (SmartMax MailMax) CAN-2003-0318 NOTE: not-for-us (PHP-Nuke) CAN-2003-0317 NOTE: not-for-us (iisPROTECT) CAN-2003-0316 NOTE: not-for-us (Venturi Client) CAN-2003-0315 NOTE: not-for-us (Snowblind Web Server) CAN-2003-0314 NOTE: not-for-us (Snowblind Web Server) CAN-2003-0313 NOTE: not-for-us (Snowblind Web Server) CAN-2003-0312 NOTE: not-for-us (Snowblind Web Server) CAN-2003-0311 NOTE: reserved CAN-2003-0310 NOTE: author apparently fixed hole by time vuln was reported, NOTE: and I guess that fix made it into new upstream versions, NOTE: but I did not check in detail CAN-2003-0309 NOTE: not-for-us (MSIE) CAN-2003-0308 NOTE: covered by DSA-305 CAN-2003-0307 NOTE: not-for-us (Poster version.two) CAN-2003-0306 NOTE: not-for-us (Windows) CAN-2003-0305 NOTE: not-for-us (Cisco) CAN-2003-0304 NOTE: not-for-us (one||zero (aka One or Zero) Helpdesk) CAN-2003-0303 NOTE: not-for-us (one||zero (aka One or Zero) Helpdesk) CAN-2003-0302 NOTE: not-for-us (Eudora) CAN-2003-0301 NOTE: not-for-us (Microsort) CAN-2003-0300 NOTE: sylpheed and sylpheed-claws might still be vulnerable NOTE: but it's only a crasher CAN-2003-0299 NOTE: mutt and balse might still be vulnerable NOTE: but it's only a crasher CAN-2003-0298 - mozilla 1.4b CAN-2003-0297 - uw-imap 7:2002c NOTE: did not check pine CAN-2003-0296 - evolution 1.3.2 CAN-2003-0295 NOTE: not-for-us (vBulletin) CAN-2003-0294 NOTE: not-for-us (php-proxima) CAN-2003-0293 NOTE: not-for-us (PalmOS) CAN-2003-0292 NOTE: not-for-us (Inktomi) CAN-2003-0291 NOTE: not-for-us (3com OfficeConnect Remote 812 ADSL Router) CAN-2003-0290 NOTE: not-for-us (eServ) CAN-2003-0289 - cdrtools 4:2.0+a14-1 CAN-2003-0288 NOTE: not-for-us (IP Messenger for Win) CAN-2003-0287 NOTE: not-for-us (Movable Type) CAN-2003-0286 NOTE: not-for-us (Snitz Forums) CAN-2003-0285 NOTE: not-for-us (bad sendmail config on AIX) CAN-2003-0284 NOTE: not-for-us (Adobe Acrobat) CAN-2003-0283 NOTE: not-for-us (Phorum) CAN-2003-0282 NOTE: covered by DSA-344 CAN-2003-0281 - firebird2 1.5.1-1 NOTE: firebird (1) in debian is very insecure and vulnerable, but NOTE: the server is not included, just the libraries. See bug #251458 CAN-2003-0280 NOTE: not-for-us (SMTP Service for ESMTP CMailServer ) CAN-2003-0279 NOTE: not-for-us (PHP-Nuke) CAN-2003-0278 NOTE: not-for-us (HappyMail) CAN-2003-0277 NOTE: not-for-us (HappyMail) CAN-2003-0276 NOTE: not-for-us (Pi3Web) CAN-2003-0275 NOTE: not-for-us (YaBB SE) CAN-2003-0274 NOTE: not-for-us (ListProc) CAN-2003-0273 NOTE: old version of Request Tracker not in debian. CAN-2003-0272 NOTE: not-for-us (miniPortail) CAN-2003-0271 NOTE: not-for-us (Personal FTP Server) CAN-2003-0270 NOTE: not-for-us (Apple Airport) CAN-2003-0269 NOTE: not-for-us (youbin) CAN-2003-0268 NOTE: not-for-us (SLWebMail on Windows) CAN-2003-0267 NOTE: not-for-us (SLWebMail on Windows) CAN-2003-0266 NOTE: not-for-us (SLWebMail on Windows) CAN-2003-0265 NOTE: not-for-us (SDBINST for SAP database) CAN-2003-0264 NOTE: not-for-us (SLMail) CAN-2003-0263 NOTE: not-for-us (FTGatePro) CAN-2003-0262 NOTE: covered by DSA-299 CAN-2003-0261 NOTE: covered by DSA-302 CAN-2003-0260 NOTE: not-for-us (Cisco) CAN-2003-0259 NOTE: not-for-us (Cisco) CAN-2003-0258 NOTE: not-for-us (Cisco) CAN-2003-0257 NOTE: not-for-us (AIX) CAN-2003-0256 - kopete 3.2.0 CAN-2003-0255 - gnupg 1.2.2 CAN-2003-0254 - apache2 2.0.47 CAN-2003-0253 - apache2 2.0.47 CAN-2003-0252 NOTE: covered by DSA-349 CAN-2003-0251 NOTE: actually, we need ypserv 2.7, nis 3.11 has ypserv 2.13 - nis 3.11 CAN-2003-0250 NOTE: reserved CAN-2003-0249 NOTE: reserved CAN-2003-0248 NOTE: covered by DSA-336 CAN-2003-0247 NOTE: covered by DSA-336 CAN-2003-0246 NOTE: covered by DSA-336 CAN-2003-0245 - apache2 2.0.46 CAN-2003-0244 NOTE: covered by DSA-336 CAN-2003-0243 NOTE: not-for-us (Happycgi.com Happymall) CAN-2003-0242 NOTE: not-for-us (MacOS) CAN-2003-0241 NOTE: not-for-us (FrontRange GoldMine / win) CAN-2003-0240 NOTE: not-for-us (Axis Network Camera) CAN-2003-0239 NOTE: not-for-us (Mirabilis ICQ / windows) CAN-2003-0238 NOTE: not-for-us (Mirabilis ICQ / windows) CAN-2003-0237 NOTE: not-for-us (Mirabilis ICQ / windows) CAN-2003-0236 NOTE: not-for-us (Mirabilis ICQ / windows) CAN-2003-0235 NOTE: not-for-us (Mirabilis ICQ / windows) CAN-2003-0234 NOTE: reserved CAN-2003-0233 NOTE: not-for-us (microsoft) CAN-2003-0232 NOTE: not-for-us (microsoft) CAN-2003-0231 NOTE: not-for-us (microsoft) CAN-2003-0230 NOTE: not-for-us (microsoft) CAN-2003-0229 NOTE: reserved CAN-2003-0228 NOTE: not-for-us (microsoft) CAN-2003-0227 NOTE: not-for-us (microsoft) CAN-2003-0226 NOTE: not-for-us (microsoft) CAN-2003-0225 NOTE: not-for-us (microsoft) CAN-2003-0224 NOTE: not-for-us (microsoft) CAN-2003-0223 NOTE: not-for-us (microsoft) CAN-2003-0222 NOTE: not-for-us (oracle) CAN-2003-0221 NOTE: not-for-us (HP tru64) CAN-2003-0220 NOTE: not-for-us (Kerio Personal Firewall) CAN-2003-0219 NOTE: not-for-us (Kerio Personal Firewall) CAN-2003-0218 NOTE: not-for-us (Monkey http daemon; not in debian) CAN-2003-0217 NOTE: not-for-us (Neoteris Instant Virtual Extranet) CAN-2003-0216 NOTE: not-for-us (cisco) CAN-2003-0215 NOTE: not-for-us (bttlxeForum / win) CAN-2003-0214 NOTE: covered by DSA-292 CAN-2003-0213 NOTE: covered by DSA-295 CAN-2003-0212 NOTE: covered by DSA-289 CAN-2003-0211 - xinetd 2.3.11 CAN-2003-0210 NOTE: not-for-us (cisco) CAN-2003-0209 NOTE: covered by DSA-297 CAN-2003-0208 NOTE: not-for-us (macromedia flash) CAN-2003-0207 NOTE: covered by DSA-286 CAN-2003-0206 NOTE: covered by DSA-294 CAN-2003-0205 NOTE: covered by DSA-294 CAN-2003-0204 NOTE: covered by DSA-284 CAN-2003-0203 NOTE: covered by DSA-281 CAN-2003-0202 NOTE: covered by DSA-279 CAN-2003-0201 NOTE: covered by DSA-280 CAN-2003-0200 NOTE: reserved CAN-2003-0199 NOTE: reserved CAN-2003-0198 NOTE: not-for-us (MacOS) CAN-2003-0197 NOTE: not-for-us (Interbase Database) CAN-2003-0196 NOTE: covered by DSA-280 CAN-2003-0195 NOTE: covered by DSA-317 CAN-2003-0194 NOTE: apparently a redhat specific compilation prolem of tcpdump CAN-2003-0193 NOTE: covered by DSA-576-1 - catdoc 0.91.5-2 CAN-2003-0192 - apache2 2.0.47 CAN-2003-0190 - ssh (unfixed; bug #281595) CAN-2003-0189 - apache2 2.0.46 CAN-2003-0188 NOTE: covered by DSA-304 CAN-2003-0187 NOTE: only affects kernel 2.4.19, 2.4.20. CAN-2003-0186 NOTE: reserved CAN-2003-0185 NOTE: reserved CAN-2003-0184 NOTE: reserved CAN-2003-0183 NOTE: reserved CAN-2003-0182 NOTE: reserved CAN-2003-0181 NOTE: not-for-us (Lotus Domino Web Server) CAN-2003-0180 NOTE: not-for-us (Lotus Domino Web Server) CAN-2003-0179 NOTE: not-for-us (Lotus Domino Web Server) CAN-2003-0178 NOTE: not-for-us (Lotus Domino Web Server) CAN-2003-0177 NOTE: not-for-us (IRIX) CAN-2003-0176 NOTE: not-for-us (IRIX) CAN-2003-0175 NOTE: not-for-us (IRIX) CAN-2003-0174 NOTE: not-for-us (IRIX) CAN-2003-0173 NOTE: covered by DSA-283 CAN-2003-0172 NOTE: not belived to be vulnerable (http://marc.theaimsgroup.com/?l=bugtraq&m=104931415307111&w=2) CAN-2003-0171 NOTE: not-for-us (MacOS) CAN-2003-0170 NOTE: not-for-us (AIX) CAN-2003-0169 NOTE: not-for-us (HP Instant TopTools) CAN-2003-0168 NOTE: not-for-us (Apple QuickTime Player) CAN-2003-0167 NOTE: covered by DSA-274 CAN-2003-0166 NOTE: not belived to be vulnerable (http://marc.theaimsgroup.com/?l=bugtraq&m=104931415307111&w=2) CAN-2003-0165 - eog 2.2.1 CAN-2003-0164 NOTE: reserved CAN-2003-0163 NOTE: Gaim-Encryption Plugin not in debian CAN-2003-0162 NOTE: covered by DSA-271 CAN-2003-0161 NOTE: covered by DSA-278 CAN-2003-0160 - squirrelmail 1:1.2.11 CAN-2003-0159 - ethereal 0.9.10 CAN-2003-0158 NOTE: rejected CAN-2003-0157 NOTE: rejected CAN-2003-0156 NOTE: covered by DSA-264 CAN-2003-0155 NOTE: covered by DSA-265 CAN-2003-0154 NOTE: covered by DSA-265 CAN-2003-0153 NOTE: covered by DSA-265 CAN-2003-0152 NOTE: covered by DSA-265 CAN-2003-0151 NOTE: not-for-us (BEA WebLogic Server) CAN-2003-0150 NOTE: covered by DSA-303 CAN-2003-0149 NOTE: not-for-us (McAfee ePolicy Orchestrator) CAN-2003-0148 NOTE: not-for-us (McAfee ePolicy Orchestrator) CAN-2003-0147 NOTE: covered by DSA-288 CAN-2003-0146 NOTE: covered by DSA-263 CAN-2003-0145 NOTE: covered by DSA-261 CAN-2003-0144 NOTE: covered by DSA-267 CAN-2003-0143 NOTE: covered by DSA-259 CAN-2003-0142 NOTE: not-for-us (acroread) CAN-2003-0141 NOTE: not-for-us (Real) CAN-2003-0140 NOTE: covered by DSA-268 CAN-2003-0139 NOTE: covered by DSA-266 CAN-2003-0138 NOTE: covered by DSA-266 CAN-2003-0137 NOTE: not-for-us (Nokia Serving GPRS support node) CAN-2003-0136 NOTE: covered by DSA-285 CAN-2003-0135 NOTE: red-hat specific compilation problem of vsftpd CAN-2003-0134 - apache2 2.0.46 CAN-2003-0133 - evolution 1.2.4 CAN-2003-0132 - apache2 2.0.45 CAN-2003-0131 NOTE: covered by DSA-288 CAN-2003-0130 - evolution 1.2.3 CAN-2003-0129 - evolution 1.2.3 CAN-2003-0128 - evolution 1.2.3 CAN-2003-0127 NOTE: covered by DSA-270 CAN-2003-0126 NOTE: not-for-us (SOHO Routefinder 550 firmware) CAN-2003-0121 NOTE: not-for-us (Clearswift MAILsweeper) CAN-2003-0120 NOTE: covered by DSA-256 CAN-2003-0119 NOTE: not-for-us (AIX) CAN-2003-0118 NOTE: not-for-us (Microsoft) CAN-2003-0117 NOTE: not-for-us (Microsoft) CAN-2003-0116 NOTE: not-for-us (Microsoft) CAN-2003-0115 NOTE: not-for-us (Microsoft) CAN-2003-0114 NOTE: not-for-us (Microsoft) CAN-2003-0113 NOTE: not-for-us (Microsoft) CAN-2003-0112 NOTE: not-for-us (Microsoft) CAN-2003-0111 NOTE: not-for-us (Microsoft) CAN-2003-0110 NOTE: not-for-us (Microsoft) CAN-2003-0109 NOTE: not-for-us (Microsoft) CAN-2003-0108 NOTE: covered by DSA-255 - tcpdump 3.7.1-1.2 CAN-2003-0106 NOTE: not-for-us (Symantec Enterprise Firewall) CAN-2003-0105 NOTE: not-for-us (ServerMask) CAN-2003-0102 NOTE: covered by DSA-260 CAN-2003-0101 NOTE: covered by DSA-319 CAN-2003-0099 NOTE: covered by DSA-277 CAN-2003-0098 NOTE: covered by DSA-277 CAN-2003-0096 NOTE: not-for-us (Oracle) CAN-2003-0093 NOTE: covered by DSA-261 CAN-2003-0092 NOTE: not-for-us (Solaris) CAN-2003-0091 NOTE: not-for-us (Solaris) CAN-2003-0090 NOTE: rejected CAN-2003-0089 NOTE: not-for-us (HP-UX) CAN-2003-0086 NOTE: covered by DSA-262 CAN-2003-0085 NOTE: covered by DSA-262 CAN-2003-0084 NOTE: mod_auth_any not in Debian CAN-2003-0083 - apache2 2.0.46 - apache 1.3.25 CAN-2003-0082 NOTE: covered by DSA-266 CAN-2003-0081 NOTE: covered by DSA-258 CAN-2003-0080 - gnome-lokkit 0.50.22-4 CAN-2003-0078 NOTE: covered by DSA-253 CAN-2003-0076 - dcgui 0.2.2 CAN-2003-0074 - plptools 0.12-0 CAN-2003-0073 NOTE: covered by DSA-303 CAN-2003-0072 NOTE: covered by DSA-266 CAN-2003-0071 NOTE: covered by DSA-380 CAN-2003-0068 NOTE: covered by DSA-496 CAN-2003-0063 NOTE: covered by DSA-380 CAN-2003-0061 NOTE: reserved CAN-2003-0060 - krb5 1.2.4 CAN-2003-0057 NOTE: covered by DSA-248 CAN-2003-0056 NOTE: covered by DSA-252 CAN-2003-0049 NOTE: not-for-us (MacOS) CAN-2003-0048 NOTE: apparently fixed upstream 2002-11-12 changelog CAN-2003-0047 NOTE: not-for-us (commercial ssh clients) CAN-2003-0046 NOTE: not-for-us (commercial ssh clients) CAN-2003-0044 NOTE: covered by DSA-246 CAN-2003-0043 NOTE: covered by DSA-246 CAN-2003-0042 NOTE: covered by DSA-246 CAN-2003-0041 NOTE: verified sarge version of krb5-clients not vulnerable NOTE: nothing in changelogs CAN-2003-0040 NOTE: covered by DSA-247 CAN-2003-0039 NOTE: covered by DSA-245 CAN-2003-0038 NOTE: covered by DSA-436 CAN-2003-0037 NOTE: covered by DSA-244 CAN-2003-0036 NOTE: not-for-us (ml85p, as included in the printer-drivers package for Mandrake Linux) CAN-2003-0035 NOTE: not-for-us (ml85p, as included in the printer-drivers package for Mandrake Linux) CAN-2003-0034a NOTE: HOME overflow was fixed in mainSrc/rcfile.c, but not in NOTE: chooser/mtinkc.c's version, which goes into mtinkc NOTE: it's not installed setuid or setgid, so this is not exploitable CAN-2003-0033 NOTE: covered by DSA-297 CAN-2003-0032 NOTE: covered by DSA-228 CAN-2003-0031 NOTE: covered by DSA-228 CAN-2003-0030 NOTE: not-for-us (Protegrity Secure.Data Extension Feature) CAN-2003-0029 NOTE: reserved CAN-2003-0028 NOTE: covered by DSA-266 CAN-2003-0026 NOTE: covered by DSA-231 CAN-2003-0025 NOTE: covered by DSA-229 CAN-2003-0020 - apache2 2.0.49 - apache 1.3.29.0.2-4 CAN-2003-0018 NOTE: covered by DSA-358 CAN-2003-0017 - apache2 2.0.44 CAN-2003-0016 - apache2 2.0.44 CAN-2003-0015 NOTE: covered by DSA-233 - cvs 1.11.2-5.1 CAN-2003-0014 NOTE: reserved CAN-2003-0013 NOTE: covered by DSA-230 CAN-2003-0012 NOTE: covered by DSA-230 CAN-2003-0011 NOTE: not-for-us (Microsoft) CAN-2003-0010 NOTE: not-for-us (Windows Script Engine for JScript) CAN-2003-0008 NOTE: reserved CAN-2003-0006 NOTE: reserved CAN-2003-0005 NOTE: reserved CAN-2003-0001 NOTE: covered by DSA-336 begin claimed by pdwerryh-guest CAN-2002-1583 NOTE: not-for-us (IBM DB2) CAN-2002-1582 NOTE: mailreader. Affects 2.3.30 and 2.3.31. NOTE: Sarge uses 2.3.29. CAN-2002-1581 NOTE: covered by DSA-534 - mailreader 2.3.29-9 CAN-2002-1580 NOTE: covered by DSA-215 - cyrus-imapd 1.5.19-9.10 CAN-2002-1579 NOTE: not for us (SAP) CAN-2002-1578 NOTE: not for us (SAP) CAN-2002-1577 NOTE: not for us (SAP) CAN-2002-1576 NOTE: not for us (SAP) CAN-2002-1575 NOTE: covered by DSA-437 - cgiemail 1.6-20 CAN-2002-1573 NOTE: reserved CAN-2002-1572 NOTE: reserved CAN-2002-1571 NOTE: reserved CAN-2002-1570 - ucd-snmp 4.2.3-2 CAN-2002-1569 - gv 1:3.5.8-27 CAN-2002-1568 - openssl 0.9.6g-1 CAN-2002-1567 NOTE: tomcat4 cross-site scripting vuln NOTE: not sure if it's a problem or not TODO: contacted package maintainers, waiting for response. CAN-2002-1566 - netris 0.52-1 CAN-2002-1565 NOTE: covered by DSA-209 - wget 1.8.1-6.1 CAN-2002-1564 NOTE: not-for-us (microsoft) CAN-2002-1563 - stunnel4 4.04-1 - stunnel 2:3.24-1 CAN-2002-1562 NOTE: covered by DSA-396 - thttpd 2.23beta1-2.3 CAN-2002-1561 NOTE: not-for-us (microsoft) CAN-2002-1559 NOTE: not-for-us (ion-p) CAN-2002-1558 NOTE: not-for-us (cisco) CAN-2002-1557 NOTE: not-for-us (cisco) CAN-2002-1556 NOTE: not-for-us (cisco) CAN-2002-1555 NOTE: not-for-us (cisco) CAN-2002-1554 NOTE: not-for-us (cisco) CAN-2002-1553 NOTE: not-for-us (cisco) CAN-2002-1551 NOTE: not-for-us (AIX) CAN-2002-1546 NOTE: not-for-us (Webweaver) CAN-2002-1545 NOTE: not-for-us (Coolsoft) CAN-2002-1544 NOTE: not-for-us (Coolsoft) CAN-2002-1542 NOTE: not-for-us (SolarWinds) CAN-2002-1539 NOTE: not-for-us (MDaemon) CAN-2002-1536 NOTE: not-for-us (Molly) CAN-2002-1535 NOTE: not-for-us (Symantec) CAN-2002-1533 NOTE: problem in jetty 4.1.0, Debian started with 4.2 CAN-2002-1527 NOTE: not-for-us (EMU Webmail) CAN-2002-1526 NOTE: not-for-us (EMU Webmail) CAN-2002-1525 NOTE: not-for-us (Sun) CAN-2002-1523 NOTE: not-for-us (Miniserver) CAN-2002-1522 NOTE: not-for-us (PowerFTP) CAN-2002-1515 NOTE: not-for-us (Coolforum) CAN-2002-1512 NOTE: not-for-us (BRU) CAN-2002-1508 NOTE: covered by DSA-227 - openldap2 2.0.27-3 CAN-2002-1507 NOTE: not-for-us (Unreal) CAN-2002-1506 NOTE: linuxconf not in unstable or testing CAN-2002-1504 NOTE: not-for-us (webserver-4everyone) CAN-2002-1503 NOTE: AFD not in debian CAN-2002-1500 NOTE: not-for-us (NetBSD) CAN-2002-1499 NOTE: not-for-us (FactoSystem) CAN-2002-1498 NOTE: not-for-us (SWServer) CAN-2002-1495 NOTE: not-for-us (Jawmail) CAN-2002-1492 NOTE: not-for-us (Cisco) CAN-2002-1489 NOTE: not-for-us (PlanetDNS) CAN-2002-1488 NOTE: not-for-us (Trillian) CAN-2002-1487 NOTE: not-for-us (Trillian) CAN-2002-1486 NOTE: not-for-us (Trillian) CAN-2002-1485 NOTE: not-for-us (Trillian) CAN-2002-1484 NOTE: not-for-us (db4web) CAN-2002-1483 NOTE: not-for-us (db4web) CAN-2002-1482 NOTE: phpGB not in Debian CAN-2002-1481 NOTE: phpGB not in Debian CAN-2002-1480 NOTE: phpGB not in Debian CAN-2002-1478 NOTE: covered by DSA-164 - cacti 0.6.8a-2 CAN-2002-1477 NOTE: covered by DSA-164 - cacti 0.6.8a-2 CAN-2002-1475 NOTE: not-for-us (HPUX) CAN-2002-1474 NOTE: not-for-us (HPUX) CAN-2002-1473 NOTE: not-for-us (HPUX) CAN-2002-1470 NOTE: not-for-us (Shoutcase) CAN-2002-1467 - flashplugin-nonfree 6.0.61.0-1 CAN-2002-1466 NOTE: not-for-us (Cafelog) CAN-2002-1465 NOTE: not-for-us (Cafelog) CAN-2002-1464 NOTE: not-for-us (Cafelog) CAN-2002-1462 NOTE: not-for-us (Organic PHP) CAN-2002-1461 NOTE: not-for-us (Webshop Manager) CAN-2002-1460 NOTE: L-Forum not in Debian CAN-2002-1459 NOTE: L-Forum not in Debian CAN-2002-1458 NOTE: L-Forum not in Debian CAN-2002-1457 NOTE: L-Forum not in Debian CAN-2002-1456 NOTE: not-for-us (mIRC) CAN-2002-1455 NOTE: not-for-us (OmniHTTPD) CAN-2002-1454 NOTE: not-for-us (MyWebServer) CAN-2002-1453 NOTE: not-for-us (MyWebServer) CAN-2002-1452 NOTE: not-for-us (MyWebServer) CAN-2002-1451 NOTE: Blazix not in Debian CAN-2002-1450 NOTE: not-for-us (IBM UniVerse) CAN-2002-1449 NOTE: eUpload not in Debian CAN-2002-1445 NOTE: CERN HTTPD not in Debian CAN-2002-1444 NOTE: not-for-us (Google Toolbar) CAN-2002-1442 NOTE: not-for-us (Google Toolbar) CAN-2002-1441 NOTE: not-for-us (Tomahawk) CAN-2002-1440 NOTE: not-for-us (Gateway) CAN-2002-1439 NOTE: not-for-us (HPUX) CAN-2002-1434 NOTE: not-for-us (Kerio) CAN-2002-1433 NOTE: not-for-us (Kerio) CAN-2002-1432 NOTE: not-for-us (MidiCart) CAN-2002-1431 NOTE: not-for-us (Belkin) CAN-2002-1429 NOTE: not-for-us (ShoutBox) CAN-2002-1428 NOTE: dotproject not in Debian CAN-2002-1427 NOTE: Easy Homepage Creator not in Debian CAN-2002-1426 NOTE: not-for-us (HP) CAN-2002-1425 NOTE: covered by DSA-141 - mpack 1.5-9 CAN-2002-1423 NOTE: hole in fudforum before 2.2.0 TODO: check if this is the same as in package phpgroupware-fudforum TODO: have contacted phpgroupware developer to clarify CAN-2002-1422 NOTE: hole in fudforum before 2.2.0 TODO: check if this is the same as in package phpgroupware-fudforum TODO: have contacted phpgroupware developer to clarify CAN-2002-1421 NOTE: hole in fudforum before 2.2.0 TODO: check if this is the same as in package phpgroupware-fudforum TODO: have contacted phpgroupware developer to clarify CAN-2002-1416 NOTE: not-for-us (Webeasymail) CAN-2002-1415 NOTE: not-for-us (Webeasymail) CAN-2002-1412 NOTE: covered by DSA-138 - gallery 1.3-1 CAN-2002-1411 NOTE: not-for-us (Duma) CAN-2002-1410 NOTE: not-for-us (East Guestbook) CAN-2002-1409 NOTE: not-for-us (HPUX) CAN-2002-1408 NOTE: not-for-us (HP Openview) CAN-2002-1406 NOTE: not-for-us (HPUX) CAN-2002-1405 NOTE: covered by DSA-210 - lynx 2.8.4.1b-3.2 - lynx-ssl 1:2.8.4.1b-3.1 CAN-2002-1404 NOTE: rejected CAN-2002-1403 NOTE: covered by DSA-219 NOTE: Debian sarge uses dhcp > 2.0 CAN-2002-1402 NOTE: covered by DSA-165 - postgresql 7.2.2-2 CAN-2002-1401 NOTE: covered by DSA-165 - postgresql 7.2.2-2 CAN-2002-1400 NOTE: covered by DSA-165 - postgresql 7.2.2-2 CAN-2002-1399 - postgresql 7.2.2-2 CAN-2002-1398 NOTE: covered by DSA-165 - postgresql 7.2.2-2 CAN-2002-1397 - postgresql 7.2.2-2 CAN-2002-1395 NOTE: covered by DSA-202 - im 141-20 CAN-2002-1394 NOTE: covered by DSA-225 NOTE: no problem in sarge packages CAN-2002-1393 NOTE: covered by DSA-234 NOTE: KDE2 not in sarge CAN-2002-1390 NOTE: covered by DSA-223 - geneweb 4.09-1 CAN-2002-1389 NOTE: covered by DSA-217 - typespeed 0.4.2-2 CAN-2002-1388 NOTE: covered by DSA-221 - mhonarc 2.5.14-1 CAN-2002-1387 NOTE: covered by DSA-254 - traceroute-nanog 6.3.0-1 CAN-2002-1386 NOTE: covered by DSA-254 - traceroute-nanog 6.3.0-1 CAN-2002-1384 NOTE: covered by DSA-222 - xpdf 3.00-9 CAN-2002-1383 NOTE: covered by DSA-232 - cupsys 1.1.18-1 CAN-2002-1380 NOTE: covered by DSA-336 - kernel-source-2.2.25 2.2.25-2 CAN-2002-1379 NOTE: covered by DSA-227 - openldap2 2.0.27-3 CAN-2002-1378 NOTE: covered by DSA-227 - openldap2 2.0.27-3 CAN-2002-1376 NOTE: covered by DSA-212 NOTE: bug in mysql 3, sarge uses mysql 4 CAN-2002-1375 NOTE: covered by DSA-212 NOTE: bug in mysql 3, sarge uses mysql 4 CAN-2002-1374 NOTE: covered by DSA-212 NOTE: bug in mysql 3, sarge uses mysql 4 CAN-2002-1373 NOTE: covered by DSA-212 NOTE: bug in mysql 3, sarge uses mysql 4 CAN-2002-1372 NOTE: covered by DSA-232 - cupsys 1.1.18-1 CAN-2002-1371 NOTE: covered by DSA-232 - cupsys 1.1.18-1 CAN-2002-1370 NOTE: reserved CAN-2002-1369 NOTE: covered by DSA-232 - cupsys 1.1.18-1 CAN-2002-1368 NOTE: covered by DSA-232 - cupsys 1.1.18-1 CAN-2002-1367 NOTE: covered by DSA-232 - cupsys 1.1.18-1 CAN-2002-1366 NOTE: covered by DSA-232 - cupsys 1.1.18-1 CAN-2002-1365 NOTE: covered by DSA-216 - fetchmail 6.2.0-1 CAN-2002-1364 NOTE: covered by DSA-254 - traceroute-nanog 6.3.0-1 CAN-2002-1363 NOTE: covered by DSA-213 - libpng3 1.2.5-8 CAN-2002-1362 NOTE: covered by DSA-211 NOTE: micq not in sarge CAN-2002-1360 NOTE: Debian uses openssh, not vulnerable CAN-2002-1359 NOTE: Debian uses openssh, not vulnerable CAN-2002-1358 NOTE: Debian uses openssh, not vulnerable CAN-2002-1357 NOTE: Debian uses openssh, not vulnerable CAN-2002-1356 - ethereal 0.9.8-1 CAN-2002-1355 - ethereal 0.9.8-1 CAN-2002-1354 NOTE: reserved CAN-2002-1353 NOTE: reserved CAN-2002-1352 NOTE: not-for-us (CartMan) CAN-2002-1351 NOTE: reserved CAN-2002-1350 NOTE: covered by DSA-206 - tcpdump 3.6.2-2.2 CAN-2002-1348 NOTE: covered by DSA-249 - w3mmee 0.3.p24.17-3 CAN-2002-1347 - libsasl2 2.1.10-1 CAN-2002-1346 NOTE: reserved CAN-2002-1345 NOTE: multiple ftp client issues TODO: check wget, ftp, ncftp, etc. CAN-2002-1344 NOTE: covered by DSA-209 - wget 1.8.1-6.1 CAN-2002-1343 NOTE: reserved CAN-2002-1342 NOTE: covered by DSA-203 - smb2www 980804-17 CAN-2002-1341 NOTE: covered by DSA-220 - squirrelmail 1:1.3.2-2 CAN-2002-1340 NOTE: not-for-us (Office Web Components) CAN-2002-1339 NOTE: not-for-us (Office Web Components) CAN-2002-1338 NOTE: not-for-us (Office Web Components) CAN-2002-1337 NOTE: covered by DSA-257 NOTE: problem in sendmail 8.12, sarge uses 8.13 CAN-2002-1335 NOTE: covered by DSA-249 - w3mmee 0.3.p24.17-3 CAN-2002-1334 NOTE: not-for-us (BizDesign) CAN-2002-1333 NOTE: reserved CAN-2002-1332 NOTE: reserved CAN-2002-1331 NOTE: reserved CAN-2002-1330 NOTE: reserved CAN-2002-1329 NOTE: reserved CAN-2002-1328 NOTE: reserved CAN-2002-1326 NOTE: reserved CAN-2002-1324 NOTE: reserved CAN-2002-1323 NOTE: covered by DSA-208 - perl 5.8.0-14 CAN-2002-1322 NOTE: not-for-us (ClearCase) CAN-2002-1321 NOTE: Realplayer not in Sarge CAN-2002-1318 NOTE: covered by DSA-200 NOTE: Problem in Samba 2, sarge uses Samba 3. CAN-2002-1316 NOTE: not-for-us (iPlanet) CAN-2002-1315 NOTE: not-for-us (iPlanet) CAN-2002-1314 NOTE: reserved CAN-2002-1313 NOTE: covered by DSA-198 - nullmailer 1.00RC5-17 CAN-2002-1312 NOTE: reserved CAN-2002-1311 NOTE: covered by DSA-197 - courier 0.40.0-1 CAN-2002-1310 NOTE: not-for-us (Macromedia) CAN-2002-1309 NOTE: not-for-us (Macromedia) CAN-2002-1307 NOTE: covered by DSA-199 - mhonarc 2.5.13-1 CAN-2002-1306 NOTE: covered by DSA-214 - kdenetwork 2.2.2-14.20 CAN-2002-1305 NOTE: reserved CAN-2002-1304 NOTE: reserved CAN-2002-1303 NOTE: reserved CAN-2002-1302 NOTE: reserved CAN-2002-1301 NOTE: reserved CAN-2002-1300 NOTE: reserved end claimed by pdwerryh-guest CAN-2002-1299 NOTE: reserved CAN-2002-1298 NOTE: reserved CAN-2002-1297 NOTE: reserved CAN-2002-1295 CAN-2002-1294 CAN-2002-1293 CAN-2002-1292 CAN-2002-1291 CAN-2002-1290 CAN-2002-1289 CAN-2002-1288 CAN-2002-1287 CAN-2002-1286 CAN-2002-1285 CAN-2002-1283 CAN-2002-1282 NOTE: covered by DSA-204 CAN-2002-1281 NOTE: covered by DSA-204 CAN-2002-1280 NOTE: reserved CAN-2002-1279 NOTE: covered by DSA-194 CAN-2002-1277 NOTE: covered by DSA-190 CAN-2002-1276 NOTE: covered by DSA-191 CAN-2002-1275 NOTE: covered by DSA-192 CAN-2002-1274 NOTE: reserved CAN-2002-1273 NOTE: reserved CAN-2002-1271 NOTE: covered by DSA-386 CAN-2002-1269 CAN-2002-1263 NOTE: rejected CAN-2002-1262 CAN-2002-1261 NOTE: rejected CAN-2002-1259 NOTE: rejected CAN-2002-1258 CAN-2002-1254 CAN-2002-1251 NOTE: covered by DSA-186 CAN-2002-1249 NOTE: reserved CAN-2002-1247 NOTE: covered by DSA-193 CAN-2002-1246 NOTE: reserved CAN-2002-1245 NOTE: covered by DSA-189 CAN-2002-1243 NOTE: reserved CAN-2002-1241 NOTE: reserved CAN-2002-1240 NOTE: reserved CAN-2002-1238 CAN-2002-1237 NOTE: reserved CAN-2002-1235 NOTE: covered by DSA-183 CAN-2002-1234 NOTE: rejected CAN-2002-1233 NOTE: covered by DSA-187 CAN-2002-1232 NOTE: covered by DSA-180 CAN-2002-1229 CAN-2002-1228 CAN-2002-1227 NOTE: covered by DSA-177 CAN-2002-1226 NOTE: covered by DSA-178 CAN-2002-1225, NOTE: covered by DSA-178 CAN-2002-1225 CAN-2002-1221 NOTE: covered by DSA-196 CAN-2002-1220 NOTE: covered by DSA-196 CAN-2002-1219 NOTE: covered by DSA-196 CAN-2002-1218 NOTE: reserved CAN-2002-1217 CAN-2002-1216 CAN-2002-1215 NOTE: covered by DSA-174 CAN-2002-1213 CAN-2002-1212 CAN-2002-1210 CAN-2002-1209 CAN-2002-1208 NOTE: reserved CAN-2002-1207 NOTE: reserved CAN-2002-1206 NOTE: reserved CAN-2002-1205 NOTE: reserved CAN-2002-1204 CAN-2002-1203 CAN-2002-1202 CAN-2002-1201 CAN-2002-1200 NOTE: covered by DSA-175 CAN-2002-1196 NOTE: covered by DSA-173 CAN-2002-1195 NOTE: covered by DSA-169 CAN-2002-1194 CAN-2002-1193 NOTE: covered by DSA-172 CAN-2002-1192 CAN-2002-1191 CAN-2002-1190 CAN-2002-1181 CAN-2002-1177 CAN-2002-1176 CAN-2002-1175, NOTE: covered by DSA-171 CAN-2002-1175 CAN-2002-1174 NOTE: covered by DSA-171 CAN-2002-1173 NOTE: reserved CAN-2002-1172 NOTE: reserved CAN-2002-1171 NOTE: reserved CAN-2002-1168 CAN-2002-1167 CAN-2002-1166 CAN-2002-1165 CAN-2002-1161 NOTE: rejected CAN-2002-1159 NOTE: covered by DSA-224 CAN-2002-1158 NOTE: covered by DSA-224 CAN-2002-1157 NOTE: covered by DSA-181 CAN-2002-1156 - apache2 2.0.43 CAN-2002-1155 CAN-2002-1151 NOTE: covered by DSA-167 CAN-2002-1150 CAN-2002-1149 CAN-2002-1148 NOTE: covered by DSA-170 CAN-2002-1145 CAN-2002-1144 NOTE: reserved CAN-2002-1143 CAN-2002-1136 NOTE: reserved CAN-2002-1134 CAN-2002-1133 CAN-2002-1132 NOTE: covered by DSA-191 CAN-2002-1131 NOTE: covered by DSA-191 CAN-2002-1130 NOTE: reserved CAN-2002-1129 CAN-2002-1128 CAN-2002-1127 CAN-2002-1125 CAN-2002-1124 NOTE: covered by DSA-166 CAN-2002-1121 CAN-2002-1120 CAN-2002-1119 NOTE: covered by DSA-159 CAN-2002-1116 NOTE: covered by DSA-161 CAN-2002-1115 NOTE: covered by DSA-161 CAN-2002-1114 NOTE: covered by DSA-153 CAN-2002-1113 NOTE: covered by DSA-153 CAN-2002-1112 NOTE: covered by DSA-153 CAN-2002-1111 NOTE: covered by DSA-153 CAN-2002-1110 NOTE: covered by DSA-153 CAN-2002-1103 CAN-2002-1101 CAN-2002-1100 CAN-2002-1094 CAN-2002-1090 CAN-2002-1089 CAN-2002-1087 CAN-2002-1086 CAN-2002-1085 CAN-2002-1084 CAN-2002-1083 CAN-2002-1082 CAN-2002-1080 CAN-2002-1078 CAN-2002-1077 CAN-2002-1075 CAN-2002-1073 CAN-2002-1072 CAN-2002-1071 CAN-2002-1070 CAN-2002-1069 CAN-2002-1068 CAN-2002-1067 CAN-2002-1066 CAN-2002-1065 CAN-2002-1064 CAN-2002-1063 CAN-2002-1062 CAN-2002-1061 CAN-2002-1058 CAN-2002-1055 CAN-2002-1052 CAN-2002-1051 NOTE: covered by DSA-254 CAN-2002-1048 CAN-2002-1047 CAN-2002-1045 CAN-2002-1044 CAN-2002-1043 CAN-2002-1042 CAN-2002-1041 CAN-2002-1040 CAN-2002-1038 CAN-2002-1037 CAN-2002-1036 CAN-2002-1034 CAN-2002-1033 CAN-2002-1032 CAN-2002-1029 CAN-2002-1028 CAN-2002-1027 CAN-2002-1026 CAN-2002-1023 CAN-2002-1022 CAN-2002-1021 CAN-2002-1020 CAN-2002-1019 CAN-2002-1018 CAN-2002-1017 CAN-2002-1016 CAN-2002-1012 CAN-2002-1011 CAN-2002-1010 CAN-2002-1009 CAN-2002-1008 CAN-2002-1007 CAN-2002-1005 CAN-2002-1003 CAN-2002-1001 CAN-2002-0999 CAN-2002-0998 CAN-2002-0997 CAN-2002-0996 CAN-2002-0994 CAN-2002-0993 CAN-2002-0992 CAN-2002-0991 CAN-2002-0986 NOTE: covered by DSA-168 CAN-2002-0985 NOTE: covered by DSA-168 CAN-2002-0983 NOTE: covered by DSA-157 CAN-2002-0982 CAN-2002-0980 CAN-2002-0979 CAN-2002-0978 CAN-2002-0977 CAN-2002-0976 CAN-2002-0975 CAN-2002-0973 CAN-2002-0972 NOTE: covered by DSA-165 CAN-2002-0971 CAN-2002-0970 NOTE: covered by DSA-155 CAN-2002-0966 CAN-2002-0963 CAN-2002-0962 CAN-2002-0961 CAN-2002-0960 CAN-2002-0959 CAN-2002-0957 CAN-2002-0956 CAN-2002-0955 CAN-2002-0954 CAN-2002-0951 CAN-2002-0950 CAN-2002-0949 CAN-2002-0948 CAN-2002-0944 CAN-2002-0943 CAN-2002-0942 CAN-2002-0940 CAN-2002-0939 CAN-2002-0937 CAN-2002-0936 CAN-2002-0934 CAN-2002-0933 CAN-2002-0932 CAN-2002-0931 CAN-2002-0930 CAN-2002-0929 CAN-2002-0928 CAN-2002-0926 CAN-2002-0925 CAN-2002-0924 CAN-2002-0923 CAN-2002-0922 CAN-2002-0921 CAN-2002-0920 CAN-2002-0919 CAN-2002-0918 CAN-2002-0917 CAN-2002-0915 CAN-2002-0913 CAN-2002-0912 CAN-2002-0910 CAN-2002-0909 CAN-2002-0908 CAN-2002-0907 CAN-2002-0905 CAN-2002-0903 CAN-2002-0902 CAN-2002-0901 CAN-2002-0899 CAN-2002-0896 CAN-2002-0894 CAN-2002-0893 CAN-2002-0888 CAN-2002-0886 CAN-2002-0885 CAN-2002-0884 CAN-2002-0883 CAN-2002-0882 CAN-2002-0881 CAN-2002-0880 CAN-2002-0879 CAN-2002-0878 CAN-2002-0877 CAN-2002-0876 CAN-2002-0874 NOTE: covered by DSA-150 CAN-2002-0870 CAN-2002-0869 CAN-2002-0868 NOTE: reserved CAN-2002-0863 CAN-2002-0862 CAN-2002-0861 CAN-2002-0858 CAN-2002-0857 CAN-2002-0855 NOTE: covered by DSA-147 CAN-2002-0854 CAN-2002-0852 CAN-2002-0849 CAN-2002-0843 NOTE: covered by DSA-187 - apache 1.3.27-0.1 CAN-2002-0841 NOTE: rejected CAN-2002-0840 NOTE: covered by DSA-187 - apache2 2.0.43-1 - apache 1.3.27-0.1 CAN-2002-0839 NOTE: covered by DSA-187 - apache 1.3.27-0.1 CAN-2002-0838 NOTE: covered by DSA-176 CAN-2002-0837 CAN-2002-0836 NOTE: covered by DSA-207 CAN-2002-0834 NOTE: covered by DSA-162 CAN-2002-0833 CAN-2002-0832 CAN-2002-0828 NOTE: rejected CAN-2002-0827 CAN-2002-0825 CAN-2002-0822 CAN-2002-0821 CAN-2002-0820 CAN-2002-0819 CAN-2002-0815 CAN-2002-0812 CAN-2002-0811 CAN-2002-0807 CAN-2002-0803 CAN-2002-0800 CAN-2002-0799 CAN-2002-0798 CAN-2002-0797 CAN-2002-0796 CAN-2002-0793 CAN-2002-0792 CAN-2002-0791 CAN-2002-0787 CAN-2002-0786 CAN-2002-0784 CAN-2002-0783 CAN-2002-0782 CAN-2002-0781 CAN-2002-0780 CAN-2002-0779 CAN-2002-0775 CAN-2002-0774 CAN-2002-0773 CAN-2002-0772 CAN-2002-0771 CAN-2002-0770 CAN-2002-0769 CAN-2002-0767 CAN-2002-0764 CAN-2002-0763 CAN-2002-0757 CAN-2002-0756 CAN-2002-0753 CAN-2002-0752 CAN-2002-0751 CAN-2002-0750 CAN-2002-0749 CAN-2002-0747 CAN-2002-0746 CAN-2002-0745 CAN-2002-0744 CAN-2002-0743 CAN-2002-0742 CAN-2002-0740 CAN-2002-0739 CAN-2002-0735 CAN-2002-0732 CAN-2002-0731 CAN-2002-0730 CAN-2002-0728 NOTE: covered by DSA-140 CAN-2002-0725 CAN-2002-0724 CAN-2002-0723 CAN-2002-0721 CAN-2002-0717 CAN-2002-0715 CAN-2002-0713 CAN-2002-0712 CAN-2002-0711 CAN-2002-0709 CAN-2002-0708 CAN-2002-0707 CAN-2002-0706 CAN-2002-0705 CAN-2002-0702 CAN-2002-0699 CAN-2002-0693 CAN-2002-0690 CAN-2002-0689 NOTE: reserved CAN-2002-0686 CAN-2002-0684 CAN-2002-0683 CAN-2002-0681 CAN-2002-0680 CAN-2002-0677 CAN-2002-0675 CAN-2002-0670 CAN-2002-0669 CAN-2002-0667 CAN-2002-0666 NOTE: covered by DSA-201 CAN-2002-0664 CAN-2002-0662 NOTE: covered by DSA-160 CAN-2002-0661 - apache2 2.0.40 CAN-2002-0660 NOTE: covered by DSA-140 CAN-2002-0659 NOTE: covered by DSA-136 CAN-2002-0657 NOTE: covered by DSA-136 CAN-2002-0656 NOTE: covered by DSA-136 CAN-2002-0655 NOTE: covered by DSA-136 NOTE: this is approximatly the release of woody, so we can stop here CAN-2002-0654 - apache2 2.0.40 CAN-2002-0652 CAN-2002-0649 CAN-2002-0646 NOTE: rejected CAN-2002-0645 CAN-2002-0644 CAN-2002-0643 CAN-2002-0641 CAN-2002-0637 CAN-2002-0636 NOTE: reserved CAN-2002-0635 NOTE: reserved CAN-2002-0634 NOTE: reserved CAN-2002-0633 NOTE: reserved CAN-2002-0632 CAN-2002-0629 CAN-2002-0628 CAN-2002-0626 CAN-2002-0624 CAN-2002-0620 CAN-2002-0614 CAN-2002-0612 CAN-2002-0611 CAN-2002-0610 CAN-2002-0609 CAN-2002-0608 CAN-2002-0607 CAN-2002-0606 CAN-2002-0604 CAN-2002-0603 CAN-2002-0602 CAN-2002-0600 CAN-2002-0596 CAN-2002-0595 CAN-2002-0593 CAN-2002-0592 CAN-2002-0591 CAN-2002-0590 CAN-2002-0589 CAN-2002-0588 CAN-2002-0587 CAN-2002-0586 CAN-2002-0585 CAN-2002-0584 CAN-2002-0583 CAN-2002-0582 CAN-2002-0581 CAN-2002-0580 CAN-2002-0579 CAN-2002-0578 CAN-2002-0577 CAN-2002-0572 CAN-2002-0570 CAN-2002-0568 CAN-2002-0566 CAN-2002-0565 CAN-2002-0564 CAN-2002-0563 CAN-2002-0562 CAN-2002-0561 CAN-2002-0560 CAN-2002-0559 CAN-2002-0558 CAN-2002-0557 CAN-2002-0556 CAN-2002-0555 CAN-2002-0554 CAN-2002-0552 CAN-2002-0551 CAN-2002-0550 CAN-2002-0549 CAN-2002-0548 CAN-2002-0547 CAN-2002-0544 CAN-2002-0541 CAN-2002-0540 CAN-2002-0537 CAN-2002-0535 CAN-2002-0534 CAN-2002-0533 CAN-2002-0530 CAN-2002-0529 CAN-2002-0528 CAN-2002-0527 CAN-2002-0526 CAN-2002-0525 CAN-2002-0524 CAN-2002-0523 CAN-2002-0522 CAN-2002-0521 CAN-2002-0520 CAN-2002-0518 CAN-2002-0517 CAN-2002-0515 CAN-2002-0514 CAN-2002-0510 CAN-2002-0509 CAN-2002-0508 CAN-2002-0507 CAN-2002-0504 CAN-2002-0503 CAN-2002-0502 CAN-2002-0500 CAN-2002-0499 CAN-2002-0498 CAN-2002-0496 CAN-2002-0492 CAN-2002-0491 CAN-2002-0489 CAN-2002-0487 CAN-2002-0486 CAN-2002-0485 CAN-2002-0483 CAN-2002-0482 CAN-2002-0481 CAN-2002-0480 CAN-2002-0479 CAN-2002-0478 CAN-2002-0477 CAN-2002-0476 CAN-2002-0475 CAN-2002-0474 CAN-2002-0472 CAN-2002-0471 CAN-2002-0470 CAN-2002-0469 CAN-2002-0468 CAN-2002-0467 CAN-2002-0466 CAN-2002-0465 CAN-2002-0461 CAN-2002-0460 CAN-2002-0459 CAN-2002-0458 CAN-2002-0457 CAN-2002-0456 CAN-2002-0455 CAN-2002-0453 CAN-2002-0452 CAN-2002-0450 CAN-2002-0449 CAN-2002-0448 CAN-2002-0447 CAN-2002-0446 CAN-2002-0440 CAN-2002-0439 CAN-2002-0438 CAN-2002-0436 CAN-2002-0434 CAN-2002-0433 CAN-2002-0432 CAN-2002-0430 CAN-2002-0428 CAN-2002-0427 CAN-2002-0426 CAN-2002-0422 CAN-2002-0421 CAN-2002-0420 CAN-2002-0419 CAN-2002-0418 CAN-2002-0417 CAN-2002-0416 CAN-2002-0415 CAN-2002-0413 CAN-2002-0411 CAN-2002-0410 CAN-2002-0409 CAN-2002-0408 CAN-2002-0407 CAN-2002-0405 CAN-2002-0399 CAN-2002-0392 - apache2 2.0.37 CAN-2002-0393 CAN-2002-0390 NOTE: reserved CAN-2002-0388 NOTE: covered by DSA-147 CAN-2002-0386 CAN-2002-0385 CAN-2002-0383 NOTE: reserved CAN-2002-0380 NOTE: covered by DSA-255 CAN-2002-0378 CAN-2002-0375 CAN-2002-0371 CAN-2002-0370 CAN-2002-0365 NOTE: reserved CAN-2002-0361 NOTE: reserved CAN-2002-0360 CAN-2002-0354 CAN-2002-0353 CAN-2002-0352 CAN-2002-0351 CAN-2002-0350 CAN-2002-0349 CAN-2002-0348 CAN-2002-0347 CAN-2002-0346 CAN-2002-0345 CAN-2002-0344 CAN-2002-0343 CAN-2002-0342 CAN-2002-0341 CAN-2002-0340 CAN-2002-0338 CAN-2002-0337 CAN-2002-0336 CAN-2002-0335 CAN-2002-0334 CAN-2002-0333 CAN-2002-0332 CAN-2002-0331 CAN-2002-0328 CAN-2002-0327 CAN-2002-0326 CAN-2002-0325 CAN-2002-0324 CAN-2002-0323 CAN-2002-0322 CAN-2002-0321 CAN-2002-0320 CAN-2002-0319 CAN-2002-0317 CAN-2002-0316 CAN-2002-0315 CAN-2002-0314 CAN-2002-0312 CAN-2002-0311 CAN-2002-0310 CAN-2002-0308 CAN-2002-0307 CAN-2002-0306 CAN-2002-0305 CAN-2002-0304 CAN-2002-0303 CAN-2002-0301 CAN-2002-0298 CAN-2002-0297 CAN-2002-0296 CAN-2002-0295 CAN-2002-0294 CAN-2002-0293 CAN-2002-0291 CAN-2002-0289 CAN-2002-0288 CAN-2002-0286 CAN-2002-0285 CAN-2002-0284 CAN-2002-0283 CAN-2002-0282 CAN-2002-0281 CAN-2002-0280 CAN-2002-0279 CAN-2002-0278 CAN-2002-0277 CAN-2002-0273 CAN-2002-0272 CAN-2002-0271 CAN-2002-0270 CAN-2002-0269 CAN-2002-0268 CAN-2002-0266 CAN-2002-0264 CAN-2002-0263 CAN-2002-0262 CAN-2002-0261 CAN-2002-0260 CAN-2002-0259 CAN-2002-0258 CAN-2002-0257 CAN-2002-0256 CAN-2002-0255 CAN-2002-0254 CAN-2002-0253 CAN-2002-0252 CAN-2002-0249 CAN-2002-0248 CAN-2002-0247 CAN-2002-0245 CAN-2002-0244 CAN-2002-0243 CAN-2002-0242 CAN-2002-0240 CAN-2002-0239 CAN-2002-0238 CAN-2002-0236 CAN-2002-0235 CAN-2002-0234 CAN-2002-0233 CAN-2002-0232 CAN-2002-0231 CAN-2002-0230 CAN-2002-0229 CAN-2002-0228 CAN-2002-0227 CAN-2002-0225 CAN-2002-0224 CAN-2002-0223 CAN-2002-0222 CAN-2002-0221 CAN-2002-0220 CAN-2002-0219 CAN-2002-0218 CAN-2002-0217 CAN-2002-0216 CAN-2002-0215 CAN-2002-0214 CAN-2002-0212 CAN-2002-0210 CAN-2002-0208 CAN-2002-0206 CAN-2002-0205 CAN-2002-0204 CAN-2002-0203 CAN-2002-0202 CAN-2002-0201 CAN-2002-0200 CAN-2002-0199 CAN-2002-0198 CAN-2002-0195 NOTE: reserved CAN-2002-0194 NOTE: reserved CAN-2002-0192 NOTE: rejected CAN-2002-0189 CAN-2002-0182 NOTE: reserved CAN-2002-0180 CAN-2002-0177 CAN-2002-0165 CAN-2002-0164 NOTE: covered by DSA-380 CAN-2002-0162 CAN-2002-0161 NOTE: reserved CAN-2002-0154 CAN-2002-0145 CAN-2002-0144 CAN-2002-0142 CAN-2002-0141 CAN-2002-0140 CAN-2002-0138 CAN-2002-0137 CAN-2002-0136 CAN-2002-0135 CAN-2002-0134 CAN-2002-0133 CAN-2002-0132 CAN-2002-0131 CAN-2002-0130 CAN-2002-0129 CAN-2002-0127 CAN-2002-0126 CAN-2002-0125 CAN-2002-0124 CAN-2002-0122 CAN-2002-0119 CAN-2002-0118 CAN-2002-0116 CAN-2002-0114 CAN-2002-0113 CAN-2002-0112 CAN-2002-0110 CAN-2002-0109 CAN-2002-0108 CAN-2002-0106 CAN-2002-0105 CAN-2002-0104 CAN-2002-0103 CAN-2002-0102 CAN-2002-0101 CAN-2002-0100 CAN-2002-0099 CAN-2002-0093 CAN-2002-0091 CAN-2002-0089 CAN-2002-0088 CAN-2002-0087 CAN-2002-0086 CAN-2002-0085 CAN-2002-0084 CAN-2002-0077 CAN-2002-0058 CAN-2002-0056 CAN-2002-0053 CAN-2002-0048 CAN-2002-0041 CAN-2002-0039 CAN-2002-0037 CAN-2002-0035 NOTE: reserved CAN-2002-0034 CAN-2002-0031 CAN-2002-0030 CAN-2002-0029 NOTE: covered by DSA-196 CAN-2002-0019 NOTE: reserved CAN-2002-0016 NOTE: reserved CAN-2002-0015 NOTE: reserved CAN-2002-0013 CAN-2002-0012 CAN-2002-0010 CAN-2002-0008 CAN-2002-0001 CAN-2001-1413 NOTE: not vulnerable according to http://www.debian.org/security/nonvulns-sarge CAN-2001-1412 CAN-2001-1411 CAN-2001-1410 CAN-2001-1409 CAN-2001-1408 CAN-2001-1405 CAN-2001-1404 CAN-2001-1403 CAN-2001-1402 CAN-2001-1401 CAN-2001-1400 CAN-2001-1399 CAN-2001-1398 CAN-2001-1397 CAN-2001-1396 CAN-2001-1395 CAN-2001-1394 CAN-2001-1393 CAN-2001-1392 CAN-2001-1390 CAN-2001-1389 CAN-2001-1388 CAN-2001-1387 CAN-2001-1384 CAN-2001-1379 CAN-2001-1377 CAN-2001-1376 CAN-2001-1368 CAN-2001-1366 CAN-2001-1365 CAN-2001-1364 CAN-2001-1363 CAN-2001-1362 CAN-2001-1361 CAN-2001-1360 CAN-2001-1358 CAN-2001-1357 CAN-2001-1356 CAN-2001-1355 CAN-2001-1354 CAN-2001-1353 CAN-2001-1348 CAN-2001-1346 CAN-2001-1344 CAN-2001-1343 CAN-2001-1341 CAN-2001-1340 CAN-2001-1339 CAN-2001-1338 CAN-2001-1337 CAN-2001-1336 CAN-2001-1335 CAN-2001-1333 CAN-2001-1332 CAN-2001-1331 CAN-2001-1330 CAN-2001-1329 CAN-2001-1326 CAN-2001-1325 CAN-2001-1324 CAN-2001-1323 CAN-2001-1321 CAN-2001-1320 CAN-2001-1319 CAN-2001-1318 CAN-2001-1317 CAN-2001-1316 CAN-2001-1315 CAN-2001-1314 CAN-2001-1313 CAN-2001-1312 CAN-2001-1311 CAN-2001-1310 CAN-2001-1309 CAN-2001-1308 CAN-2001-1307 CAN-2001-1306 CAN-2001-1305 CAN-2001-1304 CAN-2001-1300 CAN-2001-1298 CAN-2001-1294 CAN-2001-1293 CAN-2001-1292 CAN-2001-1290 CAN-2001-1289 CAN-2001-1288 CAN-2001-1287 CAN-2001-1286 CAN-2001-1285 CAN-2001-1284 CAN-2001-1283 CAN-2001-1282 CAN-2001-1281 CAN-2001-1280 CAN-2001-1278 CAN-2001-1275 CAN-2001-1274 CAN-2001-1273 CAN-2001-1272 CAN-2001-1271 CAN-2001-1270 CAN-2001-1269 CAN-2001-1268 CAN-2001-1265 CAN-2001-1264 CAN-2001-1263 CAN-2001-1262 CAN-2001-1261 CAN-2001-1260 CAN-2001-1259 CAN-2001-1258 CAN-2001-1257 CAN-2001-1256 CAN-2001-1255 CAN-2001-1254 CAN-2001-1253 CAN-2001-1250 CAN-2001-1249 CAN-2001-1248 CAN-2001-1245 CAN-2001-1244 CAN-2001-1243 CAN-2001-1242 CAN-2001-1241 CAN-2001-1239 CAN-2001-1238 CAN-2001-1233 CAN-2001-1232 CAN-2001-1230 CAN-2001-1229 CAN-2001-1228 CAN-2001-1226 CAN-2001-1225 CAN-2001-1224 CAN-2001-1223 CAN-2001-1222 CAN-2001-1221 CAN-2001-1220 CAN-2001-1219 CAN-2001-1218 CAN-2001-1217 CAN-2001-1216 CAN-2001-1214 CAN-2001-1213 CAN-2001-1212 CAN-2001-1211 CAN-2001-1210 CAN-2001-1209 CAN-2001-1208 CAN-2001-1207 CAN-2001-1206 CAN-2001-1205 CAN-2001-1204 CAN-2001-1202 CAN-2001-1198 CAN-2001-1197 CAN-2001-1196 CAN-2001-1195 CAN-2001-1194 CAN-2001-1192 CAN-2001-1191 CAN-2001-1190 CAN-2001-1189 CAN-2001-1188 CAN-2001-1187 CAN-2001-1184 CAN-2001-1182 CAN-2001-1181 CAN-2001-1179 CAN-2001-1178 CAN-2001-1173 CAN-2001-1171 CAN-2001-1170 CAN-2001-1169 CAN-2001-1168 CAN-2001-1167 CAN-2001-1165 CAN-2001-1164 CAN-2001-1163 CAN-2001-1159 CAN-2001-1157 CAN-2001-1156 CAN-2001-1154 CAN-2001-1152 CAN-2001-1151 CAN-2001-1150 CAN-2001-1148 CAN-2001-1143 CAN-2001-1142 CAN-2001-1140 CAN-2001-1139 CAN-2001-1138 CAN-2001-1137 CAN-2001-1136 CAN-2001-1135 CAN-2001-1134 CAN-2001-1133 CAN-2001-1131 CAN-2001-1129 CAN-2001-1128 CAN-2001-1127 CAN-2001-1126 CAN-2001-1125 CAN-2001-1124 CAN-2001-1123 CAN-2001-1122 CAN-2001-1120 CAN-2001-1115 CAN-2001-1114 CAN-2001-1112 CAN-2001-1111 CAN-2001-1110 CAN-2001-1109 CAN-2001-1107 CAN-2001-1105 CAN-2001-1104 CAN-2001-1102 CAN-2001-1101 CAN-2001-1097 CAN-2001-1094 CAN-2001-1093 CAN-2001-1092 CAN-2001-1091 CAN-2001-1090 CAN-2001-1087 CAN-2001-1086 CAN-2001-1082 CAN-2001-1078 CAN-2001-1077 CAN-2001-1076 CAN-2001-1073 CAN-2001-1070 CAN-2001-1068 CAN-2001-1065 CAN-2001-1064 CAN-2001-1061 CAN-2001-1060 CAN-2001-1058 CAN-2001-1057 CAN-2001-1052 CAN-2001-1051 CAN-2001-1050 CAN-2001-1047 CAN-2001-1045 CAN-2001-1044 CAN-2001-1042 CAN-2001-1041 CAN-2001-1040 CAN-2001-1039 CAN-2001-1034 CAN-2001-1033 CAN-2001-1031 CAN-2001-1026 CAN-2001-1025 CAN-2001-1024 CAN-2001-1023 CAN-2001-1021 CAN-2001-1019 CAN-2001-1018 CAN-2001-1015 CAN-2001-1014 CAN-2001-1013 CAN-2001-1012 CAN-2001-1009 CAN-2001-1007 CAN-2001-1006 CAN-2001-1005 CAN-2001-1004 CAN-2001-1003 CAN-2001-1000 CAN-2001-0999 CAN-2001-0997 CAN-2001-0996 CAN-2001-0994 CAN-2001-0992 CAN-2001-0991 CAN-2001-0990 CAN-2001-0989 CAN-2001-0988 CAN-2001-0986 CAN-2001-0985 CAN-2001-0984 CAN-2001-0983 CAN-2001-0979 CAN-2001-0976 CAN-2001-0975 CAN-2001-0974 CAN-2001-0972 CAN-2001-0971 CAN-2001-0970 CAN-2001-0968 CAN-2001-0967 CAN-2001-0966 CAN-2001-0964 CAN-2001-0958 CAN-2001-0956 CAN-2001-0955 CAN-2001-0953 CAN-2001-0952 CAN-2001-0950 CAN-2001-0949 CAN-2001-0948 CAN-2001-0947 CAN-2001-0945 CAN-2001-0944 CAN-2001-0943 CAN-2001-0942 CAN-2001-0941 CAN-2001-0938 CAN-2001-0937 CAN-2001-0935 CAN-2001-0934 CAN-2001-0933 CAN-2001-0932 CAN-2001-0931 CAN-2001-0930 CAN-2001-0928 NOTE: covered by DSA-301 CAN-2001-0927 CAN-2001-0926 CAN-2001-0925 CAN-2001-0924 CAN-2001-0923 CAN-2001-0922 CAN-2001-0919 CAN-2001-0916 CAN-2001-0915 CAN-2001-0913 CAN-2001-0911 CAN-2001-0910 CAN-2001-0908 CAN-2001-0904 CAN-2001-0903 CAN-2001-0898 CAN-2001-0897 CAN-2001-0893 CAN-2001-0892 CAN-2001-0890 CAN-2001-0885 NOTE: reserved CAN-2001-0883 NOTE: reserved CAN-2001-0882 NOTE: reserved CAN-2001-0881 NOTE: reserved CAN-2001-0880 NOTE: reserved CAN-2001-0878 NOTE: reserved CAN-2001-0871 CAN-2001-0870 CAN-2001-0868 CAN-2001-0858 CAN-2001-0856 CAN-2001-0855 CAN-2001-0854 CAN-2001-0853 CAN-2001-0849 CAN-2001-0848 CAN-2001-0847 CAN-2001-0845 CAN-2001-0844 CAN-2001-0842 CAN-2001-0841 CAN-2001-0840 CAN-2001-0839 CAN-2001-0838 CAN-2001-0835 CAN-2001-0832 CAN-2001-0831 CAN-2001-0829 CAN-2001-0827 CAN-2001-0826 CAN-2001-0824 CAN-2001-0821 CAN-2001-0820 CAN-2001-0818 CAN-2001-0817 CAN-2001-0814 NOTE: reserved CAN-2001-0813 NOTE: reserved CAN-2001-0812 NOTE: reserved CAN-2001-0811 NOTE: reserved CAN-2001-0810 NOTE: reserved CAN-2001-0809 CAN-2001-0808 CAN-2001-0807 CAN-2001-0802 NOTE: reserved CAN-2001-0800 CAN-2001-0799 CAN-2001-0798 NOTE: reserved CAN-2001-0795 CAN-2001-0794 CAN-2001-0791 CAN-2001-0790 CAN-2001-0789 CAN-2001-0788 CAN-2001-0786 CAN-2001-0785 CAN-2001-0783 CAN-2001-0782 CAN-2001-0781 CAN-2001-0780 CAN-2001-0778 CAN-2001-0777 CAN-2001-0776 CAN-2001-0775 CAN-2001-0772 CAN-2001-0771 CAN-2001-0768 CAN-2001-0767 CAN-2001-0766 CAN-2001-0762 CAN-2001-0761 CAN-2001-0759 CAN-2001-0758 CAN-2001-0756 CAN-2001-0755 CAN-2001-0753 CAN-2001-0747 CAN-2001-0746 CAN-2001-0744 CAN-2001-0743 CAN-2001-0742 CAN-2001-0737 CAN-2001-0736 CAN-2001-0735 CAN-2001-0734 CAN-2001-0729 CAN-2001-0725 NOTE: reserved CAN-2001-0721 CAN-2001-0715 CAN-2001-0714 CAN-2001-0713 CAN-2001-0712 CAN-2001-0711 CAN-2001-0709 CAN-2001-0708 CAN-2001-0707 CAN-2001-0705 CAN-2001-0704 CAN-2001-0703 CAN-2001-0702 CAN-2001-0695 CAN-2001-0694 CAN-2001-0693 CAN-2001-0691 CAN-2001-0689 CAN-2001-0688 CAN-2001-0687 CAN-2001-0684 CAN-2001-0683 CAN-2001-0681 CAN-2001-0679 CAN-2001-0678 CAN-2001-0674 CAN-2001-0673 NOTE: reserved CAN-2001-0672 NOTE: reserved CAN-2001-0671 CAN-2001-0669 CAN-2001-0661 NOTE: reserved CAN-2001-0657 NOTE: reserved CAN-2001-0656 NOTE: reserved CAN-2001-0655 NOTE: reserved CAN-2001-0654 NOTE: reserved CAN-2001-0649 CAN-2001-0647 CAN-2001-0645 CAN-2001-0642 CAN-2001-0636 CAN-2001-0633 CAN-2001-0632 CAN-2001-0624 CAN-2001-0623 CAN-2001-0620 CAN-2001-0619 CAN-2001-0618 CAN-2001-0617 CAN-2001-0614 CAN-2001-0610 CAN-2001-0609 CAN-2001-0608 CAN-2001-0607 CAN-2001-0606 CAN-2001-0605 CAN-2001-0604 CAN-2001-0603 CAN-2001-0602 CAN-2001-0601 CAN-2001-0600 CAN-2001-0599 CAN-2001-0598 CAN-2001-0597 CAN-2001-0592 CAN-2001-0588 CAN-2001-0587 CAN-2001-0584 CAN-2001-0583 CAN-2001-0582 CAN-2001-0581 CAN-2001-0580 CAN-2001-0579 CAN-2001-0578 CAN-2001-0577 CAN-2001-0576 CAN-2001-0575 CAN-2001-0572 CAN-2001-0571 CAN-2001-0570 CAN-2001-0569 CAN-2001-0568 CAN-2001-0566 CAN-2001-0562 CAN-2001-0561 CAN-2001-0557 CAN-2001-0556 CAN-2001-0555 CAN-2001-0552 CAN-2001-0551 CAN-2001-0542 CAN-2001-0539 NOTE: reserved CAN-2001-0535 CAN-2001-0534 CAN-2001-0532 NOTE: reserved CAN-2001-0531 NOTE: reserved CAN-2001-0524 CAN-2001-0523 CAN-2001-0521 CAN-2001-0520 CAN-2001-0519 CAN-2001-0516 CAN-2001-0515 CAN-2001-0509 CAN-2001-0505 CAN-2001-0499 CAN-2001-0498 CAN-2001-0496 CAN-2001-0492 CAN-2001-0491 CAN-2001-0490 CAN-2001-0484 CAN-2001-0483 CAN-2001-0480 CAN-2001-0479 CAN-2001-0478 CAN-2001-0477 CAN-2001-0476 CAN-2001-0472 CAN-2001-0471 CAN-2001-0470 CAN-2001-0468 CAN-2001-0466 CAN-2001-0464 CAN-2001-0460 CAN-2001-0459 CAN-2001-0458 CAN-2001-0454 CAN-2001-0453 CAN-2001-0452 CAN-2001-0451 CAN-2001-0450 CAN-2001-0448 CAN-2001-0447 CAN-2001-0446 CAN-2001-0443 CAN-2001-0441 CAN-2001-0438 CAN-2001-0437 CAN-2001-0436 CAN-2001-0435 CAN-2001-0433 CAN-2001-0432 CAN-2001-0431 CAN-2001-0426 CAN-2001-0425 CAN-2001-0424 CAN-2001-0421 CAN-2001-0420 CAN-2001-0419 CAN-2001-0418 CAN-2001-0417 CAN-2001-0415 CAN-2001-0411 CAN-2001-0410 CAN-2001-0406 CAN-2001-0404 CAN-2001-0403 CAN-2001-0401 CAN-2001-0400 CAN-2001-0399 CAN-2001-0398 CAN-2001-0397 CAN-2001-0396 CAN-2001-0395 CAN-2001-0393 CAN-2001-0392 CAN-2001-0391 CAN-2001-0390 CAN-2001-0389 CAN-2001-0385 CAN-2001-0384 CAN-2001-0382 CAN-2001-0381 CAN-2001-0380 CAN-2001-0376 CAN-2001-0374 CAN-2001-0372 CAN-2001-0370 CAN-2001-0369 CAN-2001-0367 CAN-2001-0360 CAN-2001-0359 CAN-2001-0358 CAN-2001-0357 CAN-2001-0355 CAN-2001-0354 CAN-2001-0352 CAN-2001-0350 CAN-2001-0349 CAN-2001-0343 NOTE: reserved CAN-2001-0342 NOTE: reserved CAN-2001-0337 CAN-2001-0332 CAN-2001-0329 CAN-2001-0328 CAN-2001-0325 CAN-2001-0324 CAN-2001-0323 CAN-2001-0322 CAN-2001-0320 CAN-2001-0315 CAN-2001-0314 CAN-2001-0313 CAN-2001-0312 CAN-2001-0308 CAN-2001-0307 CAN-2001-0306 CAN-2001-0305 CAN-2001-0304 CAN-2001-0303 CAN-2001-0302 CAN-2001-0300 CAN-2001-0298 CAN-2001-0297 CAN-2001-0296 CAN-2001-0294 CAN-2001-0293 CAN-2001-0292 CAN-2001-0291 CAN-2001-0286 CAN-2001-0285 CAN-2001-0283 CAN-2001-0282 CAN-2001-0281 CAN-2001-0277 CAN-2001-0275 CAN-2001-0273 CAN-2001-0272 CAN-2001-0271 CAN-2001-0270 CAN-2001-0264 CAN-2001-0263 CAN-2001-0262 CAN-2001-0261 CAN-2001-0258 CAN-2001-0257 CAN-2001-0256 CAN-2001-0255 CAN-2001-0254 CAN-2001-0253 CAN-2001-0251 CAN-2001-0250 CAN-2001-0249 CAN-2001-0248 CAN-2001-0247 CAN-2001-0246 CAN-2001-0242 CAN-2001-0232 CAN-2001-0231 CAN-2001-0229 CAN-2001-0228 CAN-2001-0227 CAN-2001-0226 CAN-2001-0225 CAN-2001-0224 CAN-2001-0223 CAN-2001-0220 CAN-2001-0217 CAN-2001-0216 CAN-2001-0214 CAN-2001-0213 CAN-2001-0212 CAN-2001-0211 CAN-2001-0210 CAN-2001-0209 CAN-2001-0208 CAN-2001-0206 CAN-2001-0205 CAN-2001-0202 CAN-2001-0201 CAN-2001-0200 CAN-2001-0199 CAN-2001-0198 CAN-2001-0192 CAN-2001-0188 CAN-2001-0186 CAN-2001-0184 CAN-2001-0181 CAN-2001-0180 CAN-2001-0177 CAN-2001-0173 CAN-2001-0172 CAN-2001-0171 CAN-2001-0168 CAN-2001-0167 CAN-2001-0163 NOTE: reserved CAN-2001-0162 NOTE: reserved CAN-2001-0161 NOTE: reserved CAN-2001-0160 NOTE: reserved CAN-2001-0159 NOTE: reserved CAN-2001-0158 NOTE: reserved CAN-2001-0146 CAN-2001-0145 CAN-2001-0135 CAN-2001-0134 CAN-2001-0133 CAN-2001-0132 CAN-2001-0131 NOTE: covered by DSA-187 CAN-2001-0127 CAN-2001-0114 CAN-2001-0113 CAN-2001-0112 CAN-2001-0107 CAN-2001-0104 CAN-2001-0103 CAN-2001-0102 CAN-2001-0101 CAN-2001-0098 CAN-2001-0097 CAN-2001-0093 CAN-2001-0088 CAN-2001-0087 CAN-2001-0086 CAN-2001-0084 CAN-2001-0082 CAN-2001-0079 CAN-2001-0076 CAN-2001-0075 CAN-2001-0074 CAN-2001-0073 CAN-2001-0070 CAN-2001-0068 CAN-2001-0067 CAN-2001-0065 CAN-2001-0064 CAN-2001-0052 CAN-2001-0051 CAN-2001-0049 CAN-2001-0048 CAN-2001-0047 CAN-2001-0046 CAN-2001-0045 CAN-2001-0044 CAN-2001-0038 CAN-2001-0037 CAN-2001-0032 CAN-2001-0031 CAN-2001-0030 CAN-2001-0029 CAN-2001-0027 CAN-2001-0025 CAN-2001-0024 CAN-2001-0023 CAN-2001-0022 CAN-2001-0019 CAN-2000-1214 CAN-2000-1213 CAN-2000-1209 CAN-2000-1208 CAN-2000-1207 CAN-2000-1206 CAN-2000-1205 CAN-2000-1204 CAN-2000-1202 CAN-2000-1201 CAN-2000-1199 CAN-2000-1198 CAN-2000-1197 CAN-2000-1194 CAN-2000-1192 CAN-2000-1191 CAN-2000-1188 CAN-2000-1186 CAN-2000-1185 CAN-2000-1183 CAN-2000-1177 CAN-2000-1176 CAN-2000-1175 CAN-2000-1173 CAN-2000-1172 CAN-2000-1168 CAN-2000-1161 CAN-2000-1160 CAN-2000-1159 CAN-2000-1158 CAN-2000-1157 CAN-2000-1156 CAN-2000-1155 CAN-2000-1154 CAN-2000-1153 CAN-2000-1152 CAN-2000-1151 CAN-2000-1150 CAN-2000-1147 CAN-2000-1138 CAN-2000-1134 CAN-2000-1133 CAN-2000-1130 CAN-2000-1129 CAN-2000-1128 CAN-2000-1127 CAN-2000-1126 CAN-2000-1125 CAN-2000-1118 CAN-2000-1117 CAN-2000-1116 CAN-2000-1114 CAN-2000-1110 CAN-2000-1105 CAN-2000-1104 CAN-2000-1103 CAN-2000-1102 CAN-2000-1100 CAN-2000-1098 CAN-2000-1093 CAN-2000-1092 CAN-2000-1090 CAN-2000-1088 CAN-2000-1087 CAN-2000-1086 CAN-2000-1085 CAN-2000-1084 CAN-2000-1083 CAN-2000-1082 CAN-2000-1081 CAN-2000-1079 CAN-2000-1078 CAN-2000-1076 CAN-2000-1066 CAN-2000-1065 CAN-2000-1064 CAN-2000-1063 CAN-2000-1062 CAN-2000-1053 CAN-2000-1052 CAN-2000-1048 CAN-2000-1046 CAN-2000-1039 CAN-2000-1037 CAN-2000-1035 CAN-2000-1033 CAN-2000-1030 CAN-2000-1029 CAN-2000-1028 CAN-2000-1025 CAN-2000-1023 CAN-2000-1021 CAN-2000-1020 CAN-2000-1017 CAN-2000-1015 CAN-2000-1013 CAN-2000-1012 CAN-2000-1009 CAN-2000-1008 CAN-2000-0999 CAN-2000-0998 CAN-2000-0997 CAN-2000-0988 CAN-2000-0987 CAN-2000-0986 CAN-2000-0985 CAN-2000-0971 CAN-2000-0963 CAN-2000-0955 CAN-2000-0954 CAN-2000-0950 CAN-2000-0940 CAN-2000-0939 CAN-2000-0931 CAN-2000-0918 CAN-2000-0916 CAN-2000-0907 CAN-2000-0906 CAN-2000-0905 CAN-2000-0904 CAN-2000-0903 CAN-2000-0902 CAN-2000-0899 CAN-2000-0898 CAN-2000-0893 CAN-2000-0889 CAN-2000-0885 CAN-2000-0882 CAN-2000-0881 CAN-2000-0880 CAN-2000-0879 CAN-2000-0872 CAN-2000-0866 CAN-2000-0857 CAN-2000-0855 CAN-2000-0845 CAN-2000-0843 CAN-2000-0842 CAN-2000-0841 CAN-2000-0840 CAN-2000-0836 CAN-2000-0835 CAN-2000-0833 CAN-2000-0832 CAN-2000-0831 CAN-2000-0828 CAN-2000-0827 CAN-2000-0826 CAN-2000-0817 CAN-2000-0812 CAN-2000-0802 CAN-2000-0801 CAN-2000-0800 CAN-2000-0798 CAN-2000-0794 CAN-2000-0793 CAN-2000-0791 CAN-2000-0789 CAN-2000-0785 CAN-2000-0784 CAN-2000-0775 CAN-2000-0774 CAN-2000-0772 CAN-2000-0769 CAN-2000-0760 CAN-2000-0759 CAN-2000-0757 CAN-2000-0756 CAN-2000-0755 CAN-2000-0752 CAN-2000-0748 CAN-2000-0746 CAN-2000-0736 CAN-2000-0735 CAN-2000-0734 CAN-2000-0724 CAN-2000-0723 CAN-2000-0722 CAN-2000-0721 CAN-2000-0719 CAN-2000-0715 CAN-2000-0714 CAN-2000-0713 CAN-2000-0710 CAN-2000-0709 CAN-2000-0704 CAN-2000-0701 CAN-2000-0697 CAN-2000-0696 CAN-2000-0695 CAN-2000-0692 - kdebase 4:2.2.2-14.6 CAN-2000-0691 CAN-2000-0690 CAN-2000-0689 CAN-2000-0688 CAN-2000-0687 CAN-2000-0686 CAN-2000-0680 CAN-2000-0667 CAN-2000-0659 CAN-2000-0658 CAN-2000-0657 CAN-2000-0656 CAN-2000-0653 CAN-2000-0649 CAN-2000-0648 CAN-2000-0647 CAN-2000-0646 CAN-2000-0645 CAN-2000-0629 CAN-2000-0626 CAN-2000-0625 CAN-2000-0623 CAN-2000-0618 CAN-2000-0617 CAN-2000-0614 CAN-2000-0612 CAN-2000-0609 CAN-2000-0608 CAN-2000-0607 CAN-2000-0606 CAN-2000-0605 CAN-2000-0592 CAN-2000-0589 CAN-2000-0580 CAN-2000-0578 CAN-2000-0574 CAN-2000-0572 CAN-2000-0564 CAN-2000-0563 CAN-2000-0562 CAN-2000-0559 CAN-2000-0554 CAN-2000-0547 CAN-2000-0546 CAN-2000-0545 CAN-2000-0544 CAN-2000-0543 CAN-2000-0535 CAN-2000-0531 CAN-2000-0527 CAN-2000-0526 CAN-2000-0524 CAN-2000-0520 CAN-2000-0509 CAN-2000-0503 CAN-2000-0492 CAN-2000-0491 CAN-2000-0487 CAN-2000-0480 CAN-2000-0479 CAN-2000-0476 CAN-2000-0473 CAN-2000-0450 CAN-2000-0449 CAN-2000-0444 CAN-2000-0434 CAN-2000-0433 CAN-2000-0429 CAN-2000-0423 CAN-2000-0422 CAN-2000-0420 CAN-2000-0415 CAN-2000-0413 CAN-2000-0412 CAN-2000-0401 CAN-2000-0400 CAN-2000-0386 CAN-2000-0385 CAN-2000-0384 CAN-2000-0383 CAN-2000-0365 CAN-2000-0364 CAN-2000-0358 CAN-2000-0357 CAN-2000-0355 CAN-2000-0345 CAN-2000-0343 CAN-2000-0333 CAN-2000-0326 CAN-2000-0325 CAN-2000-0321 CAN-2000-0317 CAN-2000-0312 CAN-2000-0300 CAN-2000-0299 CAN-2000-0295 CAN-2000-0293 CAN-2000-0291 CAN-2000-0288 CAN-2000-0286 CAN-2000-0284 CAN-2000-0281 CAN-2000-0280 CAN-2000-0275 CAN-2000-0271 CAN-2000-0270 CAN-2000-0269 CAN-2000-0266 CAN-2000-0259 CAN-2000-0256 CAN-2000-0250 CAN-2000-0248 CAN-2000-0244 CAN-2000-0242 CAN-2000-0241 CAN-2000-0239 CAN-2000-0227 CAN-2000-0220 CAN-2000-0219 CAN-2000-0216 CAN-2000-0214 CAN-2000-0213 CAN-2000-0205 CAN-2000-0204 CAN-2000-0203 CAN-2000-0199 CAN-2000-0198 CAN-2000-0197 CAN-2000-0190 CAN-2000-0188 CAN-2000-0187 CAN-2000-0177 CAN-2000-0176 CAN-2000-0173 CAN-2000-0167 CAN-2000-0163 CAN-2000-0160 CAN-2000-0158 CAN-2000-0155 CAN-2000-0154 CAN-2000-0153 CAN-2000-0151 CAN-2000-0147 CAN-2000-0143 CAN-2000-0142 CAN-2000-0138 CAN-2000-0137 CAN-2000-0136 CAN-2000-0135 CAN-2000-0134 CAN-2000-0133 CAN-2000-0132 CAN-2000-0129 CAN-2000-0126 CAN-2000-0125 CAN-2000-0124 CAN-2000-0123 CAN-2000-0122 CAN-2000-0119 CAN-2000-0118 CAN-2000-0115 CAN-2000-0114 CAN-2000-0110 CAN-2000-0109 CAN-2000-0108 CAN-2000-0106 CAN-2000-0105 CAN-2000-0104 CAN-2000-0103 CAN-2000-0102 CAN-2000-0101 CAN-2000-0096 CAN-2000-0093 CAN-2000-0086 CAN-2000-0085 CAN-2000-0084 CAN-2000-0082 CAN-2000-0081 CAN-2000-0079 CAN-2000-0078 CAN-2000-0077 CAN-2000-0074 CAN-2000-0071 CAN-2000-0069 CAN-2000-0068 CAN-2000-0067 CAN-2000-0066 CAN-2000-0061 CAN-2000-0059 CAN-2000-0058 CAN-2000-0055 CAN-2000-0054 CAN-2000-0049 CAN-2000-0047 CAN-2000-0046 CAN-2000-0038 CAN-2000-0035 CAN-2000-0028 CAN-2000-0021 CAN-2000-0019 CAN-2000-0017 CAN-2000-0016 CAN-2000-0008 CAN-2000-0005 CAN-1999-1571 CAN-1999-1570 CAN-1999-1569 CAN-1999-1567 CAN-1999-1566 CAN-1999-1564 CAN-1999-1563 CAN-1999-1562 CAN-1999-1561 CAN-1999-1560 CAN-1999-1559 CAN-1999-1558 CAN-1999-1557 CAN-1999-1555 CAN-1999-1554 CAN-1999-1553 CAN-1999-1552 CAN-1999-1551 CAN-1999-1549 CAN-1999-1548 CAN-1999-1547 CAN-1999-1546 CAN-1999-1545 CAN-1999-1544 CAN-1999-1543 CAN-1999-1541 CAN-1999-1540 CAN-1999-1539 CAN-1999-1538 CAN-1999-1536 CAN-1999-1534 CAN-1999-1533 CAN-1999-1532 CAN-1999-1529 CAN-1999-1528 CAN-1999-1527 CAN-1999-1526 CAN-1999-1525 CAN-1999-1524 CAN-1999-1523 CAN-1999-1522 CAN-1999-1521 CAN-1999-1519 CAN-1999-1518 CAN-1999-1517 CAN-1999-1516 CAN-1999-1515 CAN-1999-1514 CAN-1999-1513 CAN-1999-1511 CAN-1999-1510 CAN-1999-1509 CAN-1999-1508 CAN-1999-1506 CAN-1999-1505 CAN-1999-1504 CAN-1999-1503 CAN-1999-1502 CAN-1999-1501 CAN-1999-1500 CAN-1999-1499 CAN-1999-1498 CAN-1999-1497 CAN-1999-1496 CAN-1999-1495 CAN-1999-1493 CAN-1999-1492 CAN-1999-1491 CAN-1999-1489 CAN-1999-1487 CAN-1999-1485 CAN-1999-1484 CAN-1999-1483 CAN-1999-1482 CAN-1999-1480 CAN-1999-1479 CAN-1999-1477 CAN-1999-1475 CAN-1999-1474 CAN-1999-1471 CAN-1999-1470 CAN-1999-1469 CAN-1999-1467 CAN-1999-1466 CAN-1999-1465 CAN-1999-1464 CAN-1999-1463 CAN-1999-1462 CAN-1999-1461 CAN-1999-1460 CAN-1999-1459 CAN-1999-1458 CAN-1999-1457 CAN-1999-1454 CAN-1999-1453 CAN-1999-1451 CAN-1999-1450 CAN-1999-1449 CAN-1999-1448 CAN-1999-1447 CAN-1999-1446 CAN-1999-1445 CAN-1999-1444 CAN-1999-1443 CAN-1999-1442 CAN-1999-1441 CAN-1999-1440 CAN-1999-1439 CAN-1999-1438 CAN-1999-1436 CAN-1999-1435 CAN-1999-1434 CAN-1999-1431 CAN-1999-1430 CAN-1999-1429 CAN-1999-1428 CAN-1999-1427 CAN-1999-1426 CAN-1999-1425 CAN-1999-1424 CAN-1999-1422 CAN-1999-1421 CAN-1999-1420 CAN-1999-1418 CAN-1999-1417 CAN-1999-1416 CAN-1999-1415 CAN-1999-1413 CAN-1999-1412 CAN-1999-1410 CAN-1999-1408 CAN-1999-1406 CAN-1999-1405 CAN-1999-1404 CAN-1999-1403 CAN-1999-1401 CAN-1999-1400 CAN-1999-1399 CAN-1999-1398 CAN-1999-1396 CAN-1999-1395 CAN-1999-1394 CAN-1999-1393 CAN-1999-1392 CAN-1999-1391 CAN-1999-1390 CAN-1999-1389 CAN-1999-1388 CAN-1999-1387 CAN-1999-1383 CAN-1999-1381 CAN-1999-1378 CAN-1999-1377 CAN-1999-1376 CAN-1999-1375 CAN-1999-1374 CAN-1999-1373 CAN-1999-1372 CAN-1999-1371 CAN-1999-1370 CAN-1999-1369 CAN-1999-1368 CAN-1999-1367 CAN-1999-1366 CAN-1999-1364 CAN-1999-1361 CAN-1999-1357 CAN-1999-1355 CAN-1999-1354 CAN-1999-1353 CAN-1999-1352 CAN-1999-1350 CAN-1999-1349 CAN-1999-1348 CAN-1999-1347 CAN-1999-1346 CAN-1999-1345 CAN-1999-1344 CAN-1999-1343 CAN-1999-1342 CAN-1999-1340 CAN-1999-1338 CAN-1999-1334 CAN-1999-1323 CAN-1999-1322 CAN-1999-1319 CAN-1999-1315 CAN-1999-1314 CAN-1999-1313 CAN-1999-1312 CAN-1999-1311 CAN-1999-1310 NOTE: rejected CAN-1999-1308 CAN-1999-1307 CAN-1999-1306 CAN-1999-1305 CAN-1999-1304 CAN-1999-1303 CAN-1999-1302 CAN-1999-1300 CAN-1999-1299 CAN-1999-1296 CAN-1999-1295 CAN-1999-1293 CAN-1999-1292 CAN-1999-1291 CAN-1999-1289 CAN-1999-1287 CAN-1999-1286 CAN-1999-1285 CAN-1999-1283 CAN-1999-1282 CAN-1999-1281 CAN-1999-1280 CAN-1999-1278 CAN-1999-1277 CAN-1999-1275 CAN-1999-1274 CAN-1999-1273 CAN-1999-1272 CAN-1999-1271 CAN-1999-1270 CAN-1999-1269 CAN-1999-1268 CAN-1999-1267 CAN-1999-1266 CAN-1999-1265 CAN-1999-1264 CAN-1999-1261 CAN-1999-1260 CAN-1999-1257 CAN-1999-1256 CAN-1999-1255 CAN-1999-1254 CAN-1999-1253 CAN-1999-1252 CAN-1999-1251 CAN-1999-1250 CAN-1999-1248 CAN-1999-1247 CAN-1999-1245 CAN-1999-1244 CAN-1999-1242 CAN-1999-1241 CAN-1999-1240 CAN-1999-1239 CAN-1999-1238 CAN-1999-1237 CAN-1999-1236 CAN-1999-1235 CAN-1999-1234 CAN-1999-1232 CAN-1999-1231 CAN-1999-1230 CAN-1999-1229 CAN-1999-1228 CAN-1999-1227 CAN-1999-1225 CAN-1999-1224 CAN-1999-1221 CAN-1999-1220 CAN-1999-1219 CAN-1999-1218 CAN-1999-1216 CAN-1999-1213 CAN-1999-1212 CAN-1999-1211 CAN-1999-1210 CAN-1999-1207 CAN-1999-1206 CAN-1999-1202 CAN-1999-1200 CAN-1999-1196 CAN-1999-1195 CAN-1999-1190 CAN-1999-1187 CAN-1999-1186 CAN-1999-1185 CAN-1999-1184 CAN-1999-1183 CAN-1999-1182 CAN-1999-1180 CAN-1999-1179 CAN-1999-1178 CAN-1999-1176 CAN-1999-1174 CAN-1999-1173 CAN-1999-1172 CAN-1999-1171 CAN-1999-1170 CAN-1999-1169 CAN-1999-1168 CAN-1999-1166 CAN-1999-1165 CAN-1999-1164 CAN-1999-1158 CAN-1999-1155 CAN-1999-1154 CAN-1999-1153 CAN-1999-1152 CAN-1999-1151 CAN-1999-1150 CAN-1999-1149 CAN-1999-1141 CAN-1999-1135 CAN-1999-1134 CAN-1999-1133 CAN-1999-1130 CAN-1999-1129 CAN-1999-1128 CAN-1999-1126 CAN-1999-1125 CAN-1999-1124 CAN-1999-1123 CAN-1999-1113 CAN-1999-1112 CAN-1999-1110 CAN-1999-1108 NOTE: rejected CAN-1999-1107 CAN-1999-1106 CAN-1999-1101 CAN-1999-1097 CAN-1999-1096 CAN-1999-1095 CAN-1999-1092 CAN-1999-1091 CAN-1999-1089 CAN-1999-1088 CAN-1999-1086 CAN-1999-1084 CAN-1999-1083 CAN-1999-1082 CAN-1999-1081 CAN-1999-1079 CAN-1999-1078 CAN-1999-1077 CAN-1999-1076 CAN-1999-1075 CAN-1999-1073 CAN-1999-1072 CAN-1999-1071 CAN-1999-1070 CAN-1999-1069 CAN-1999-1068 CAN-1999-1067 CAN-1999-1066 CAN-1999-1065 CAN-1999-1064 CAN-1999-1063 CAN-1999-1062 CAN-1999-1061 CAN-1999-1060 CAN-1999-1058 CAN-1999-1056 NOTE: rejected CAN-1999-1054 CAN-1999-1053 CAN-1999-1052 CAN-1999-1051 CAN-1999-1050 CAN-1999-1049 CAN-1999-1046 CAN-1999-1043 CAN-1999-1042 CAN-1999-1041 CAN-1999-1040 CAN-1999-1039 CAN-1999-1038 CAN-1999-1036 CAN-1999-1033 CAN-1999-1031 CAN-1999-1030 CAN-1999-1029 CAN-1999-1026 CAN-1999-1025 CAN-1999-1024 CAN-1999-1023 CAN-1999-1022 CAN-1999-1020 CAN-1999-1018 CAN-1999-1017 CAN-1999-1016 CAN-1999-1015 CAN-1999-1013 CAN-1999-1012 CAN-1999-1009 CAN-1999-1006 CAN-1999-1003 CAN-1999-1002 CAN-1999-0993 CAN-1999-0990 CAN-1999-0988 CAN-1999-0985 CAN-1999-0984 CAN-1999-0983 CAN-1999-0970 CAN-1999-0952 CAN-1999-0949 CAN-1999-0948 CAN-1999-0944 CAN-1999-0941 CAN-1999-0929 CAN-1999-0926 CAN-1999-0925 CAN-1999-0923 CAN-1999-0919 CAN-1999-0913 CAN-1999-0911 CAN-1999-0910 CAN-1999-0885 CAN-1999-0882 CAN-1999-0872 CAN-1999-0863 CAN-1999-0862 CAN-1999-0860 CAN-1999-0857 CAN-1999-0855 CAN-1999-0852 CAN-1999-0850 CAN-1999-0846 CAN-1999-0845 CAN-1999-0844 CAN-1999-0843 CAN-1999-0841 CAN-1999-0840 CAN-1999-0830 CAN-1999-0829 CAN-1999-0828 CAN-1999-0827 CAN-1999-0825 CAN-1999-0822 CAN-1999-0821 CAN-1999-0818 CAN-1999-0816 CAN-1999-0808 CAN-1999-0805 CAN-1999-0798 CAN-1999-0795 CAN-1999-0792 CAN-1999-0784 CAN-1999-0776 CAN-1999-0767 CAN-1999-0757 CAN-1999-0750 CAN-1999-0748 CAN-1999-0741 CAN-1999-0739 CAN-1999-0738 CAN-1999-0737 CAN-1999-0736 CAN-1999-0712 CAN-1999-0698 CAN-1999-0684 CAN-1999-0677 CAN-1999-0673 CAN-1999-0670 CAN-1999-0669 CAN-1999-0667 CAN-1999-0665 CAN-1999-0664 CAN-1999-0663 CAN-1999-0662 CAN-1999-0661 CAN-1999-0660 CAN-1999-0659 CAN-1999-0658 CAN-1999-0657 CAN-1999-0656 CAN-1999-0655 CAN-1999-0654 CAN-1999-0653 CAN-1999-0652 CAN-1999-0651 CAN-1999-0650 CAN-1999-0649 CAN-1999-0648 CAN-1999-0647 CAN-1999-0646 CAN-1999-0645 CAN-1999-0644 CAN-1999-0643 CAN-1999-0642 CAN-1999-0641 CAN-1999-0640 CAN-1999-0639 CAN-1999-0638 CAN-1999-0637 CAN-1999-0636 CAN-1999-0635 CAN-1999-0634 CAN-1999-0633 CAN-1999-0632 CAN-1999-0631 CAN-1999-0630 CAN-1999-0629 CAN-1999-0625 CAN-1999-0624 CAN-1999-0623 CAN-1999-0622 CAN-1999-0621 CAN-1999-0620 CAN-1999-0619 CAN-1999-0618 CAN-1999-0617 CAN-1999-0616 CAN-1999-0615 CAN-1999-0614 CAN-1999-0613 CAN-1999-0611 CAN-1999-0610 CAN-1999-0609 CAN-1999-0607 CAN-1999-0606 CAN-1999-0605 CAN-1999-0604 CAN-1999-0603 CAN-1999-0602 CAN-1999-0601 CAN-1999-0600 CAN-1999-0599 CAN-1999-0598 CAN-1999-0597 CAN-1999-0596 CAN-1999-0595 CAN-1999-0594 CAN-1999-0593 CAN-1999-0592 CAN-1999-0591 CAN-1999-0590 CAN-1999-0589 CAN-1999-0588 CAN-1999-0587 CAN-1999-0586 CAN-1999-0585 CAN-1999-0584 CAN-1999-0583 CAN-1999-0582 CAN-1999-0581 CAN-1999-0580 CAN-1999-0579 CAN-1999-0578 CAN-1999-0577 CAN-1999-0576 CAN-1999-0575 CAN-1999-0572 CAN-1999-0571 CAN-1999-0570 CAN-1999-0569 CAN-1999-0568 CAN-1999-0565 CAN-1999-0564 CAN-1999-0562 CAN-1999-0561 CAN-1999-0560 CAN-1999-0559 - webmin 1.160-1 CAN-1999-0556 CAN-1999-0555 CAN-1999-0554 CAN-1999-0550 CAN-1999-0549 CAN-1999-0548 CAN-1999-0547 CAN-1999-0546 CAN-1999-0541 CAN-1999-0539 CAN-1999-0537 CAN-1999-0535 CAN-1999-0534 CAN-1999-0533 CAN-1999-0532 CAN-1999-0531 CAN-1999-0530 CAN-1999-0529 CAN-1999-0528 CAN-1999-0527 CAN-1999-0525 CAN-1999-0524 CAN-1999-0523 CAN-1999-0522 CAN-1999-0521 CAN-1999-0520 CAN-1999-0519 CAN-1999-0518 CAN-1999-0517 CAN-1999-0516 CAN-1999-0515 CAN-1999-0512 CAN-1999-0511 CAN-1999-0510 CAN-1999-0509 CAN-1999-0508 CAN-1999-0507 CAN-1999-0506 CAN-1999-0505 CAN-1999-0504 CAN-1999-0503 CAN-1999-0502 CAN-1999-0501 CAN-1999-0499 CAN-1999-0498 CAN-1999-0497 CAN-1999-0495 CAN-1999-0492 CAN-1999-0490 CAN-1999-0489 CAN-1999-0488 CAN-1999-0486 CAN-1999-0480 CAN-1999-0477 CAN-1999-0476 CAN-1999-0469 CAN-1999-0467 CAN-1999-0465 CAN-1999-0462 CAN-1999-0461 CAN-1999-0460 CAN-1999-0459 CAN-1999-0455 CAN-1999-0454 CAN-1999-0453 CAN-1999-0452 CAN-1999-0451 CAN-1999-0450 CAN-1999-0444 CAN-1999-0443 CAN-1999-0435 CAN-1999-0434 CAN-1999-0431 CAN-1999-0427 CAN-1999-0426 CAN-1999-0419 CAN-1999-0418 CAN-1999-0411 CAN-1999-0406 CAN-1999-0401 CAN-1999-0400 CAN-1999-0399 CAN-1999-0398 CAN-1999-0397 CAN-1999-0394 CAN-1999-0389 CAN-1999-0381 CAN-1999-0370 CAN-1999-0364 CAN-1999-0361 CAN-1999-0360 CAN-1999-0359 CAN-1999-0356 CAN-1999-0354 CAN-1999-0352 CAN-1999-0347 CAN-1999-0345 CAN-1999-0336 CAN-1999-0333 CAN-1999-0331 CAN-1999-0330 CAN-1999-0319 CAN-1999-0317 CAN-1999-0307 CAN-1999-0306 CAN-1999-0298 CAN-1999-0287 CAN-1999-0286 CAN-1999-0285 CAN-1999-0284 CAN-1999-0283 CAN-1999-0282 CAN-1999-0271 CAN-1999-0261 CAN-1999-0258 CAN-1999-0257 CAN-1999-0255 CAN-1999-0254 CAN-1999-0253 CAN-1999-0250 CAN-1999-0249 CAN-1999-0246 CAN-1999-0243 CAN-1999-0242 CAN-1999-0241 CAN-1999-0240 CAN-1999-0238 CAN-1999-0235 CAN-1999-0232 CAN-1999-0231 CAN-1999-0229 CAN-1999-0226 CAN-1999-0222 CAN-1999-0220 CAN-1999-0216 CAN-1999-0213 CAN-1999-0205 CAN-1999-0200 CAN-1999-0198 CAN-1999-0197 CAN-1999-0195 CAN-1999-0193 CAN-1999-0187 NOTE: rejected CAN-1999-0186 CAN-1999-0171 CAN-1999-0169 CAN-1999-0165 CAN-1999-0163 CAN-1999-0156 CAN-1999-0154 CAN-1999-0144 CAN-1999-0140 CAN-1999-0127 CAN-1999-0123 CAN-1999-0121 CAN-1999-0119 CAN-1999-0114 CAN-1999-0110 NOTE: rejected CAN-1999-0107 CAN-1999-0106 CAN-1999-0105 CAN-1999-0104 CAN-1999-0098 CAN-1999-0092 CAN-1999-0089 CAN-1999-0088 CAN-1999-0086 CAN-1999-0078 CAN-1999-0076 CAN-1999-0061 CAN-1999-0033 CAN-1999-0030 CAN-1999-0020 NOTE: rejected CAN-1999-0015 CAN-1999-0004 CAN-1999-0001