[Secure-testing-commits] r2856 - data/CVE

[Moritz Muehlenhoff]

Author: jmm-guest
Date: 2005-11-24 13:38:52 +0000 (Thu, 24 Nov 2005)
New Revision: 2856

Modified:
   data/CVE/list
Log:
xine-lib fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-11-24 11:41:14 UTC (rev 2855)
+++ data/CVE/list	2005-11-24 13:38:52 UTC (rev 2856)
@@ -2468,7 +2468,7 @@
 	- mozilla-thunderbird 1.0.6-4 (bug #329667; bug #329664; high)
 CVE-2005-2967 (Format string vulnerability in input_cdda.c in xine-lib 1-beta through ...)
 	{DSA-863-1}
-	- xine-lib <unfixed> (bug #332919; bug #333682; medium)
+	- xine-lib 1.0.1-1.4 (bug #332919; bug #333682; medium)
 CVE-2005-2965 (graphviz before 2.2.1 allows local users to overwrite arbitrary files ...)
 	{DSA-857-1}
 	- graphviz 2.2.1-1sarge1 (bug #336985; low) 
@@ -13257,7 +13257,7 @@
 	- squirrelmail 2:1.4.4-1
 CVE-2005-0102 (Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier ...)
 	{DSA-673-1}
-	- evolution 2.0.3-1.2
+	- evolution 2.0.3-1.2 (bug #295548)
 CVE-2005-0101 (Buffer overflow in the socket_getline function in Newspost 2.1.1 and ...)
 	- newspost 2.1.1-2
 CVE-2005-0100 (Format string vulnerability in the movemail utility in (1) Emacs 20.x, ...)
@@ -15839,9 +15839,8 @@
 CVE-2004-0428 (Unknown vulnerability in CoreFoundation in Mac OS X 10.3.3 and Mac OS ...)
 	NOT-FOR-US: Mac OS X)
 CVE-2004-0427 (The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before ...)
-	- linux-2.6 <not-affected> (Fixed before upload of linux-2.6 package into the archive)
-	- kernel-source-2.4.27 <not-affected> (Fixed before upload of package into the archive)
-	NOTE: Fixed in 2.6.6/2.4.26 kernel
+	- linux-2.6 <not-affected> (Fixed before upload of linux-2.6 package into the archive; 2.6.6)
+	- kernel-source-2.4.27 <not-affected> (Fixed before upload of package into the archive; 2.4.26)
 CVE-2004-0426 (rsync before 2.6.1 does not properly sanitize paths when running a ...)
 	{DSA-499}
 	- rsync 2.6.1-1