[Secure-testing-commits] r2809 - in data: CVE DSA

Moritz Muehlenhoff jmm-guest at costa.debian.org
Mon Nov 21 09:29:12 UTC 2005


Author: jmm-guest
Date: 2005-11-21 09:29:07 +0000 (Mon, 21 Nov 2005)
New Revision: 2809

Modified:
   data/CVE/list
   data/DSA/list
Log:
another dsa regression


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-11-21 09:27:25 UTC (rev 2808)
+++ data/CVE/list	2005-11-21 09:29:07 UTC (rev 2809)
@@ -1996,7 +1996,7 @@
 CVE-2005-3089 (Firefox 1.0.6 allows attackers to cause a denial of service (crash) ...)
 	TODO: file a bug, it's not really clear, whether this has security implications
 CVE-2005-3088 (fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2 ...)
-	{DSA-900-1}
+	{DSA-900-2}
 	- fetchmail 6.2.5.4-1 (bug #336096; low)
 CVE-2005-3111 (The handler code for backupninja 0.8 and earlier creates temporary ...)
 	{DSA-827-1}
@@ -3048,7 +3048,7 @@
 	{DSA-812-1}
 	- turqstat 2.2.4-1 (medium)
 CVE-2005-2657 (Unknown vulnerability in common-lisp-controller 4.18 and earlier ...)
-	{DSA-811-1}
+	{DSA-811-2}
 	- common-lisp-controller 4.18 (bug #328633; medium)
 CVE-2005-2656 (Polygen before 1.0.6 generates precompiled grammar objects with ...)
 	{DSA-794-1}

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2005-11-21 09:27:25 UTC (rev 2808)
+++ data/DSA/list	2005-11-21 09:29:07 UTC (rev 2809)
@@ -6,10 +6,11 @@
 	{CVE-2005-3349 CVE-2005-3355}
 	[sarge] - gnump3d 2.9.3-1sarge3
 	NOTE: not fixed in testing at time of DSA (unfixed in sid)
-[18 Nov 2005] DSA-900-1 fetchmail - programming error
+[18 Nov 2005] DSA-900-2 fetchmail - programming error
 	{CVE-2005-3088}
-	[woody] - fetchmail 5.9.11-6.3
+	[woody] - fetchmail 5.9.11-6.4
 	[sarge] - fetchmail 6.2.5-12sarge3
+	NOTE: Original Woody fix had regressions
 	NOTE: not fixed in testing at time of DSA (too young 2/2)
 [17 Nov 2005] DSA-899-1 egroupware - programming errors
 	{CVE-2005-0870 CVE-2005-2600 CVE-2005-3347 CVE-2005-3348}




More information about the Secure-testing-commits mailing list