[Secure-testing-commits] r36 - in sarge-checks: CAN CVE DSA

Joey Hess joeyh@haydn.debian.org
Fri, 29 Oct 2004 12:51:15 -0600


Author: joeyh
Date: 2004-10-29 12:51:02 -0600 (Fri, 29 Oct 2004)
New Revision: 36

Modified:
   sarge-checks/CAN/
   sarge-checks/CAN/list
   sarge-checks/CVE/list
   sarge-checks/DSA/list
Log:
today's DSAs, and some other updates



Property changes on: sarge-checks/CAN
___________________________________________________________________
Name: svn:ignore
   + full-can.html


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2004-10-29 18:42:13 UTC (rev 35)
+++ sarge-checks/CAN/list	2004-10-29 18:51:02 UTC (rev 36)
@@ -1,5 +1,3 @@
-begin claimed by joeyh (due 31 Oct)
-
 CAN-2004-0979
 	NOTE: not-for-us (windows)
 CAN-2004-0978
@@ -127,11 +125,14 @@
 CAN-2004-0919
 	NOTE: reserved
 CAN-2004-0918
+	NOTE: covered by DSA-576-1
 	- squid 2.5.7
 CAN-2004-0917
 	NOTE: reserved
 CAN-2004-0916
 	NOTE: reserved
+	NOTE: covered by DSA-574-1
+	- cabextract 1.1-1
 CAN-2004-0915
 	NOTE: reserved
 CAN-2004-0914
@@ -835,6 +836,7 @@
 	- usermin 1.090-1
 CAN-2004-0587
 	- qla2x00-source (unfixed; bug #27870)
+	NOTE: fixed package stuck in queue due to move to non-free
 CAN-2004-0586
 	NOTE: not-for-us (Windows)
 CAN-2004-0585
@@ -1226,8 +1228,6 @@
 CAN-2004-0398
 	NOTE: covered by DSA-506
 
-end claimed by joeyh
-
 begin claimed by greuff-guest (due 31 Oct)
 	
 CAN-2004-0397
@@ -3094,6 +3094,8 @@
 	NOTE: covered by DSA-317
 CAN-2003-0194
 CAN-2003-0193
+	NOTE: covered by DSA-576-1
+	- catdoc 0.91.5-2
 CAN-2003-0192
 	- apache2 2.0.47
 CAN-2003-0190

Modified: sarge-checks/CVE/list
===================================================================
--- sarge-checks/CVE/list	2004-10-29 18:42:13 UTC (rev 35)
+++ sarge-checks/CVE/list	2004-10-29 18:51:02 UTC (rev 36)
@@ -2824,6 +2824,7 @@
 CVE-1999-0713
 CVE-1999-0711
 CVE-1999-0710
+	NOTE: covered by DSA-576-1
 CVE-1999-0708
 CVE-1999-0707
 CVE-1999-0706

Modified: sarge-checks/DSA/list
===================================================================
--- sarge-checks/DSA/list	2004-10-29 18:42:13 UTC (rev 35)
+++ sarge-checks/DSA/list	2004-10-29 18:51:02 UTC (rev 36)
@@ -1,3 +1,9 @@
+[29 Oct 2004] DSA-577-1 postgresql - symlink vulnerability
+	{CAN-2004-0977}
+	- postgresql 7.4.6-1
+[29 Oct 2004] DSA-576-1 squid - multiple
+	{CVE-1999-0710 CAN-2004-0918}
+	- squid 2.5.7-1
 [28 Oct 2004] DSA-575-1 catdoc - insecure temporary file
 	{CAN-2003-0193}
 	- catdoc 0.91.5-2