2004 年の Debian セキュリティ監査活動による勧告

2004 年にリリースされたセキュリティ勧告

05 Jan 2004 DSA-406-1 - lftp

Ulf Hãrnhammar discovered that lftp contained a buffer overflow vulnerability.

12 Jan 2004 DSA-420-1 - jitterbug

Steve Kemp discovered that jitterbug contained a improperly sanitised input vulnerability.

28 Jan 2004 DSA-430-1 - trr19

Steve Kemp discovered that trr19 contained a missing privilege release vulnerability.

03 Feb 2004 DSA-432-1 - crawl

Steve Kemp discovered that crawl contained a buffer overflow vulnerability.

21 Feb 2004 DSA-445-1 - lbreakout2

Ulf Hãrnhammar discovered that lbreakout2 contained a buffer overflow vulnerability.

21 Feb 2004 DSA-446-1 - synaesthesia

Ulf Hãrnhammar discovered that synaesthesia contained a insecure file creation vulnerability.

22 Feb 2004 DSA-447-1 - hsftp

Ulf Hãrnhammar discovered that hsftp contained a format string vulnerability.

24 Feb 2004 DSA-449-1 - metamail

Ulf Hãrnhammar discovered that metamail contained a buffer overflow, format string bugs vulnerability.

27 Feb 2004 DSA-451-1 - xboing

Steve Kemp discovered that xboing contained a buffer overflows vulnerability.

12 Mar 2004 DSA-462-1 - xitalk

Steve Kemp discovered that xitalk contained a missing privilege release vulnerability.

24 Mar 2004 DSA-468-1 - emil

Ulf Hãrnhammar discovered that emil contained a several vulnerabilities vulnerability.

03 Apr 2004 DSA-472-1 - fte

Steve Kemp discovered that fte contained a several vulnerabilities vulnerability.

14 Apr 2004 DSA-484-1 - xonix

Steve Kemp discovered that xonix contained a failure to drop privileges vulnerability.

14 Apr 2004 DSA-485-1 - ssmtp

Max Vozeler discovered that ssmtp contained a format string vulnerability.

22 May 2004 DSA-508-1 - xpcd

Swaraj Bontula discovered that xpcd contained a buffer overflow vulnerability.

29 May 2004 DSA-509-1 - gatos

Steve Kemp discovered that gatos contained a privilege escalation vulnerability.

29 May 2004 DSA-510-1 - jftpgw

Swaraj Bontula discovered that jftpgw contained a format string vulnerability.

19 Jun 2004 DSA-522-1 - super

Max Vozeler discovered that super contained a format string vulnerability vulnerability.

19 Jun 2004 DSA-523-1 - www-sql

Ulf Hãrnhammar discovered that www-sql contained a buffer overflow vulnerability.

03 Jul 2004 DSA-527-1 - pavuk

Ulf Hãrnhammar discovered that pavuk contained a buffer overflow vulnerability.

04 Oct 2004 DSA-557-1 - rp-pppoe

Max Vozeler discovered that rp-pppoe contained a missing privilege dropping vulnerability.

13 Oct 2004 DSA-565-1 - sox

Ulf Hãrnhammar discovered that sox contained a buffer overflow vulnerability.

12 Nov 2004 DSA-592-1 - ez-ipupdate

Ulf Hãrnhammar discovered that ez-ipupdate contained a format string vulnerability.

25 Nov 2004 DSA-598-1 - yardradius

Max Vozeler discovered that yardradius contained a buffer overflow vulnerability.

22 Dec 2004 DSA-615-1 - debmake

Javier Fernandez-Sanguino Pena discovered that debmake contained a insecure temporary files vulnerability.

Debian セキュリティ監査プロジェクトへ戻るセキュリティ監査のもたらした勧告のリストを参照する