[Secure-testing-commits] r2527 - in data: CVE DSA
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Fri Oct 21 11:38:16 UTC 2005
Author: jmm-guest
Date: 2005-10-21 11:38:08 +0000 (Fri, 21 Oct 2005)
New Revision: 2527
Modified:
data/CVE/list
data/DSA/list
Log:
new eric dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-10-21 10:44:46 UTC (rev 2526)
+++ data/CVE/list 2005-10-21 11:38:08 UTC (rev 2527)
@@ -574,7 +574,7 @@
{DSA-865-1}
- hylafax 1:4.2.2+rc1 (bug #329384; low)
CVE-2005-3068 (Unspecified vulnerability in Eric Integrated Development Environment ...)
- - eric 3.7.2-1 (bug #330608; unknown)
+ - eric 3.7.2-1 (bug #330608; medium)
CVE-2005-3067 (Cross-site scripting (XSS) vulnerability in perldiver.cgi in PerlDiver ...)
NOT-FOR-US: PerlDiver
CVE-2005-3066 (Cross-site scripting (XSS) vulnerability in perldiver.pl in PerlDiver ...)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2005-10-21 10:44:46 UTC (rev 2526)
+++ data/DSA/list 2005-10-21 11:38:08 UTC (rev 2527)
@@ -1,3 +1,7 @@
+[20 Oct 2005] DSA-869-1 eric - missing input sanitising
+ {CVE-2005-3068}
+ [sarge] - eric 3.6.2-2
+ NOTE: not fixed in testing at time of DSA (KDE/qt transition)
[20 Oct 2005] DSA-868-1 mozilla-thunderbird - several
{CVE-2005-2871 CVE-2005-2701 CVE-2005-2702 CVE-2005-2703 CVE-2005-2704 CVE-2005-2705 CVE-2005-2706 CVE-2005-2707 CVE-2005-2969}
[sarge] - mozilla-thunderbird 1.0.2-2.sarge1.0.7
More information about the Secure-testing-commits
mailing list