[Secure-testing-commits] r2808 - data/DSA

[Moritz Muehlenhoff]

Author: jmm-guest
Date: 2005-11-21 09:27:25 +0000 (Mon, 21 Nov 2005)
New Revision: 2808

Modified:
   data/DSA/list
Log:
new xmail dsa, update on c-l-c dsa


Modified: data/DSA/list
===================================================================
--- data/DSA/list	2005-11-21 09:22:48 UTC (rev 2807)
+++ data/DSA/list	2005-11-21 09:27:25 UTC (rev 2808)
@@ -1,3 +1,7 @@
+[21 Nov 2005] DSA-902-1 xmail - buffer overflow
+	{CVE-2005-2943}
+	[sarge] - xmail 1.21-3sarge1
+	NOTE: fixed in testing at time of DSA
 [19 Nov 2005] DSA-901-1 gnump3d - programming error
 	{CVE-2005-3349 CVE-2005-3355}
 	[sarge] - gnump3d 2.9.3-1sarge3
@@ -416,11 +420,12 @@
 	[woody] - turqstat 2.2.1woody1 (medium)
 	[sarge] - turqstat 2.2.2sarge1 (medium)
 	NOTE: not fixed in testing at time of DSA (waiting on qt, borked on m68k)
-[14 Sep 2005] DSA-811-1 common-lisp-controller - design error
+[14 Sep 2005] DSA-811-2 common-lisp-controller - design error
 	{CVE-2005-2657}
 	[woody] - common-lisp-controller <not-affected> (according to the DSA)
-	[sarge] - common-lisp-controller 4.15sarge2 (bug #328633; medium)
-	NOTE: not fixed in testing at time of DSA (too young, sid fix not yet uploaded)
+	[sarge] - common-lisp-controller 4.15sarge3 (bug #328633; medium)
+	NOTE: Original sarge2 fix had regressions
+	NOTE: fixed in testing at time of DSA
 [13 Sep 2005] DSA-810-1 mozilla - several
 	{CVE-2004-0718 CVE-2005-1937 CVE-2005-2260 CVE-2005-2261 CVE-2005-2263 CVE-2005-2265 CVE-2005-2266 CVE-2005-2268 CVE-2005-2269 CVE-2005-2270}
 	[sarge] - mozilla 2:1.7.8-1sarge2 (medium)