[Secure-testing-commits] r156 - in sarge-checks: CAN DSA
Joey Hess
joeyh@haydn.debian.org
Wed, 01 Dec 2004 13:47:16 -0700
Author: joeyh
Date: 2004-12-01 13:46:50 -0700 (Wed, 01 Dec 2004)
New Revision: 156
Modified:
sarge-checks/CAN/list
sarge-checks/DSA/list
Log:
new DSA
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2004-11-29 20:13:32 UTC (rev 155)
+++ sarge-checks/CAN/list 2004-12-01 20:46:50 UTC (rev 156)
@@ -202,6 +202,7 @@
CAN-2004-0975
- openssl 0.9.7e-1
NOTE: also includes other security fixes than this CAN
+ NOTE: covered by DSA-603-1
CAN-2004-0974 [local; low]
- netatalk 1.6.4a-1
CAN-2004-0973
Modified: sarge-checks/DSA/list
===================================================================
--- sarge-checks/DSA/list 2004-11-29 20:13:32 UTC (rev 155)
+++ sarge-checks/DSA/list 2004-12-01 20:46:50 UTC (rev 156)
@@ -1,8 +1,11 @@
-[29 Nov 2004] DSA-601-1 libgd1 - integer overflow
+[01 Dec 2004] DSA-603-1 openssl - insecure temporary file
+ {CAN-2004-0975}
+ - openssl 0.9.7e-1
+[29 Nov 2004] DSA-602-1 libgd2 - integer overlow
{CAN-2004-0941 CAN-2004-0990}
NOTE: different from fixes from earlier DSA for these CANs; 2004-0941 new
TODO: check
-[29 Nov 2004] DSA-602-1 libgd2 - integer overlow
+[29 Nov 2004] DSA-601-1 libgd1 - integer overflow
{CAN-2004-0941 CAN-2004-0990}
NOTE: different from fixes from earlier DSA for these CANs; 2004-0941 new
TODO: check