[Secure-testing-commits] r103 - in sarge-checks: CAN DSA
Joey Hess
joeyh@haydn.debian.org
Tue, 09 Nov 2004 15:15:31 -0700
Author: joeyh
Date: 2004-11-09 15:15:22 -0700 (Tue, 09 Nov 2004)
New Revision: 103
Modified:
sarge-checks/CAN/list
sarge-checks/DSA/list
Log:
today's DSAs
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2004-11-09 21:59:42 UTC (rev 102)
+++ sarge-checks/CAN/list 2004-11-09 22:15:22 UTC (rev 103)
@@ -37,9 +37,8 @@
CAN-2004-0991
NOTE: reserved
CAN-2004-0990
- NOTE: not sure if libgd1 is vulnerable
- - libgd1 (unfixed; bug #278625)
- - libgd2 2.0.30-1
+ NOTE: covered by DSA-589-1
+ NOTE: covered by DSA-591-1
CAN-2004-0989
NOTE: covered by DSA-582-1
CAN-2004-0988
Modified: sarge-checks/DSA/list
===================================================================
--- sarge-checks/DSA/list 2004-11-09 21:59:42 UTC (rev 102)
+++ sarge-checks/DSA/list 2004-11-09 22:15:22 UTC (rev 103)
@@ -1,3 +1,13 @@
+[09 Nov 2004] DSA-591-1 libgd2 - integer overflows
+ {CAN-2004-0990}
+ - libgd2 2.0.30-1
+[09 Nov 2004] DSA-590-1 gnats - format string vulnerability
+ {CAN-2004-0623}
+ NOTE: DSA got version of fix for unstable wrong
+ - gnats 4.0-6.1
+[09 Nov 2004] DSA-589-1 libgd - integer overflows
+ {CAN-2004-0990}
+ - libgd1 (unfixed; bug #280134)
[08 Nov 2004] DSA-588-1 gzip - insecure temporary files
{CAN-2004-0970}
NOTE: dsa says sid not affected