[Secure-testing-commits] r2288 - in data: CAN CVE

Joey Hess joeyh at costa.debian.org
Mon Oct 3 21:14:22 UTC 2005 

Author: joeyh
Date: 2005-10-03 21:14:17 +0000 (Mon, 03 Oct 2005)
New Revision: 2288

Modified:
   data/CAN/list
   data/CVE/list
Log:
automatic CAN database update

Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-10-03 17:27:31 UTC (rev 2287)
+++ data/CAN/list	2005-10-03 21:14:17 UTC (rev 2288)
@@ -983,24 +983,31 @@
 CAN-2005-2708
 	RESERVED
 CAN-2005-2707 (Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote ...)
+	{DSA-838-1}
 	- mozilla-firefox 1.0.7-1 (bug #329778; medium)
 	- mozilla <unfixed> (bug filed; medium)
 CAN-2005-2706 (Firefox before 1.0.7 and Mozilla before Suite 1.7.12 allows remote ...)
+	{DSA-838-1}
 	- mozilla-firefox 1.0.7-1 (bug #329778; high)
 	- mozilla <unfixed> (bug filed; high)
 CAN-2005-2705 (Integer overflow in the JavaScript engine in Firefox before 1.0.7 and ...)
+	{DSA-838-1}
 	- mozilla-firefox 1.0.7-1 (bug #329778; high)
 	- mozilla <unfixed> (bug filed; high)
 CAN-2005-2704 (Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote ...)
+	{DSA-838-1}
 	- mozilla-firefox 1.0.7-1 (bug #329778; medium)
 	- mozilla <unfixed> (bug filed; medium)
 CAN-2005-2703 (Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote ...)
+	{DSA-838-1}
 	- mozilla-firefox 1.0.7-1 (bug #329778; medium)
 	- mozilla <unfixed> (bug filed; medium)
 CAN-2005-2702 (Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote ...)
+	{DSA-838-1}
 	- mozilla-firefox 1.0.7-1 (bug #329778; high)
 	- mozilla <unfixed> (bug filed; high)
 CAN-2005-2701 (Heap-based buffer overflow in Firefox before 1.0.7 and Mozilla Suite ...)
+	{DSA-838-1}
 	- mozilla-firefox 1.0.7-1 (bug #329778; medium)
 	- mozilla <unfixed> (bug #329778; medium)
 CAN-2005-2700 (ssl_engine_kernel.c in mod_ssl before 2.8.24, when using ...)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-10-03 17:27:31 UTC (rev 2287)
+++ data/CVE/list	2005-10-03 21:14:17 UTC (rev 2288)
@@ -272,7 +272,7 @@
 	NOTE: Goran Weinholt <weinholt at debian.org> tell me that aterm 0.4.2 was 
 	NOTE: never vulnerable to the problem described. 
 	NOTE: this CVE is bogus.
-CVE-2003-0066 (rxvt: Arbitatrary command execution through escape sequences)
+CVE-2003-0066
 	- rxvt 1:2.6.4-6.1 (bug #244810)
 	NOTE: woody version is still vulnerable
 CVE-2003-0065

More information about the Secure-testing-commits mailing list