[Secure-testing-commits] r172 - in sarge-checks: CAN DSA

Joey Hess joeyh@haydn.debian.org
Fri, 03 Dec 2004 19:49:01 -0700 

Author: joeyh
Date: 2004-12-03 19:48:59 -0700 (Fri, 03 Dec 2004)
New Revision: 172

Modified:
   sarge-checks/CAN/list
   sarge-checks/DSA/list
Log:
some more updates


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2004-12-04 02:35:21 UTC (rev 171)
+++ sarge-checks/CAN/list	2004-12-04 02:48:59 UTC (rev 172)
@@ -276,6 +276,7 @@
 CAN-2004-0990
 	{DSA-602-1 DSA-601-1 DSA-591-1 DSA-589-1}
 	- libgd2 2.0.30-1
+	- libgd 1.8.4-36.1
 CAN-2004-0989
 	{DSA-582-1}
 CAN-2004-0988
@@ -399,6 +400,7 @@
 CAN-2004-0941
 	{DSA-602-1 DSA-601-1}
 	- libgd2 2.0.33-1.1
+	- libgd 1.8.4-36.1
 CAN-2004-0940
 	{DSA-594-1}
 	- apache 1.3.33-2

Modified: sarge-checks/DSA/list
===================================================================
--- sarge-checks/DSA/list	2004-12-04 02:35:21 UTC (rev 171)
+++ sarge-checks/DSA/list	2004-12-04 02:48:59 UTC (rev 172)
@@ -7,11 +7,11 @@
 [29 Nov 2004] DSA-602-1 libgd2 - integer overlow
 	{CAN-2004-0941 CAN-2004-0990}
 	NOTE: different from fixes from earlier DSA for these CANs; 2004-0941 new
-	TODO: check
+	- libgd2 2.0.33-1.1
 [29 Nov 2004] DSA-601-1 libgd1 - integer overflow
 	{CAN-2004-0941 CAN-2004-0990}
 	NOTE: different from fixes from earlier DSA for these CANs; 2004-0941 new
-	TODO: check
+	- libgd 1.8.4-36.1
 [25 Nov 2004] DSA-599-1 tetex-bin - integer overflows
 	{CAN-2004-0888}
 	- tetex-bin 2.0.2-23
@@ -67,8 +67,6 @@
 	- dhcp 2.0pl5-19.1
 [03 Nov 2004] DSA-583-1 lvm10 - insecure temporary directory
 	{CAN-2004-0972}
-	TODO: I thought this didn't really matter because the script
-	TODO: was not included in the binary package. Check or fix.
 [02 Nov 2004] DSA-582-1 libxml - buffer overflow
 	{CAN-2004-0989}
 	- libxml 1.8.17-9
@@ -222,7 +220,7 @@
 	- kdelibs 4:3.2.3-3.sarge.1
 [17 Aug 2004] DSA-538 rsync - unauthorised directory traversal and file access
 	- rsync 2.6.2-3
-[16 Aug 2004] DSA-537 ruby -- insecure file permissions
+[16 Aug 2004] DSA-537 ruby - insecure file permissions
 	{CAN-2004-0755}
 	- ruby1.8 1.8.1+1.8.2pre1-4
 	HELP: is ruby1.6 vulnerable?
@@ -586,7 +584,7 @@
 	HELP: No idea if this is fixed, we have a new upstream version
 	HELP: that came out after these advisories, but neither the debian nor
 	HELP: the upstream changelog seem to mention them.
-	NOTE: Mailed maintainr.
+	NOTE: Mailed maintainer.
 [16 Jan 2004] DSA-424 mc - buffer overflow
 	{CAN-2003-1023}
 	- mc 1:4.6.0-4.6.1-pre1-1