[Secure-testing-commits] r2289 - data/DSA

Moritz Muehlenhoff jmm-guest at costa.debian.org
Tue Oct 4 08:03:21 UTC 2005


Author: jmm-guest
Date: 2005-10-04 08:03:20 +0000 (Tue, 04 Oct 2005)
New Revision: 2289

Modified:
   data/DSA/list
Log:
two new dsas


Modified: data/DSA/list
===================================================================
--- data/DSA/list	2005-10-03 21:14:17 UTC (rev 2288)
+++ data/DSA/list	2005-10-04 08:03:20 UTC (rev 2289)
@@ -1,7 +1,15 @@
+[04 Jul 2005] DSA-840-1 drupal - missing input sanitising
+	{CAN-2005-2498}
+	- drupal 4.5.5-1
+	NOTE: fixed in testing at time of DSA
+[04 Oct 2005] DSA-839-1 apachetop - insecure temporary file
+	{CAN-2005-2660}
+	- apachetop 0.12.5-5
+	NOTE: not fixed in testing at time of DSA (not built on m68k, waiting on gcc-4)
 [03 Oct 2005] DSA-838-1 mozilla-firefox - multiple vulnerabilities
 	{CAN-2005-2701 CAN-2005-2702 CAN-2005-2703 CAN-2005-2704 CAN-2005-2705 CAN-2005-2706 CAN-2005-2707}
 	- mozilla-firefox 1.0.7-1
-	NOTE: not fixed in testing at time of DSA
+	NOTE: not fixed in testing at time of DSA (not built on arm, silly RC bugs)
 [02 Oct 2005] DSA-837-1 mozilla-firefox - buffer overflow
 	{CAN-2005-2871}
 	- mozilla-firefox 1.0.6-5 (medium)




More information about the Secure-testing-commits mailing list