[Secure-testing-commits] r2809 - in data: CVE DSA
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Mon Nov 21 09:29:12 UTC 2005
Author: jmm-guest
Date: 2005-11-21 09:29:07 +0000 (Mon, 21 Nov 2005)
New Revision: 2809
Modified:
data/CVE/list
data/DSA/list
Log:
another dsa regression
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-11-21 09:27:25 UTC (rev 2808)
+++ data/CVE/list 2005-11-21 09:29:07 UTC (rev 2809)
@@ -1996,7 +1996,7 @@
CVE-2005-3089 (Firefox 1.0.6 allows attackers to cause a denial of service (crash) ...)
TODO: file a bug, it's not really clear, whether this has security implications
CVE-2005-3088 (fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2 ...)
- {DSA-900-1}
+ {DSA-900-2}
- fetchmail 6.2.5.4-1 (bug #336096; low)
CVE-2005-3111 (The handler code for backupninja 0.8 and earlier creates temporary ...)
{DSA-827-1}
@@ -3048,7 +3048,7 @@
{DSA-812-1}
- turqstat 2.2.4-1 (medium)
CVE-2005-2657 (Unknown vulnerability in common-lisp-controller 4.18 and earlier ...)
- {DSA-811-1}
+ {DSA-811-2}
- common-lisp-controller 4.18 (bug #328633; medium)
CVE-2005-2656 (Polygen before 1.0.6 generates precompiled grammar objects with ...)
{DSA-794-1}
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2005-11-21 09:27:25 UTC (rev 2808)
+++ data/DSA/list 2005-11-21 09:29:07 UTC (rev 2809)
@@ -6,10 +6,11 @@
{CVE-2005-3349 CVE-2005-3355}
[sarge] - gnump3d 2.9.3-1sarge3
NOTE: not fixed in testing at time of DSA (unfixed in sid)
-[18 Nov 2005] DSA-900-1 fetchmail - programming error
+[18 Nov 2005] DSA-900-2 fetchmail - programming error
{CVE-2005-3088}
- [woody] - fetchmail 5.9.11-6.3
+ [woody] - fetchmail 5.9.11-6.4
[sarge] - fetchmail 6.2.5-12sarge3
+ NOTE: Original Woody fix had regressions
NOTE: not fixed in testing at time of DSA (too young 2/2)
[17 Nov 2005] DSA-899-1 egroupware - programming errors
{CVE-2005-0870 CVE-2005-2600 CVE-2005-3347 CVE-2005-3348}
More information about the Secure-testing-commits
mailing list