[Secure-testing-commits] r1758 - in data: . CAN DSA

Moritz Muehlenhoff jmm-guest at costa.debian.org
Thu Sep 1 14:36:16 UTC 2005 

Author: jmm-guest
Date: 2005-09-01 14:36:12 +0000 (Thu, 01 Sep 2005)
New Revision: 1758

Modified:
   data/CAN/list
   data/DSA/list
   data/embedded-code-copies
Log:
update on embedded copies
new firefox dsa.
joeyh: the firefox dtsa should probably be reverted and based on 1.0.6


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-09-01 13:25:58 UTC (rev 1757)
+++ data/CAN/list	2005-09-01 14:36:12 UTC (rev 1758)
@@ -9158,7 +9158,6 @@
 	NOTE: not-for-us (ArGoSoft Mail Server)
 CAN-2005-0366 (The integrity check feature in OpenPGP, when handling a message that ...)
 	- gnupg 1.4.1-1
-	NOTE: vorlon approved new upstream release to testing
 CAN-2005-0364 (Unknown vulnerability in BIND 9.2.0 in HP-UX B.11.00, B.11.11, and ...)
 	NOTE: not-for-us (bind on hp-ux)
 CAN-2005-0361

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2005-09-01 13:25:58 UTC (rev 1757)
+++ data/DSA/list	2005-09-01 14:36:12 UTC (rev 1758)
@@ -1,3 +1,9 @@
+[21 Aug 2005] DSA-779-2 mozilla-firefox - several
+	NOTE: Essentially 1.0.6 with rolled-back version number, backported version had regressions
+	{CAN-2005-2260 CAN-2005-2261 CAN-2005-2262 CAN-2005-2263 CAN-2005-2264 CAN-2005-2265 CAN-2005-2266 CAN-2005-2267 CAN-2005-2268 CAN-2005-2269 CAN-2005-2270}
+	- mozilla-firefox 1.0.6-1 (medium)
+	NOTE: not fixed in testing at time of DSA (waiting on dependencies)
+	NOTE: Fixed in DTSA, which will have the same regressions, should be checked/reverted
 [01 Sep 2005] DSA-793-1 courier - missing input sanitising
 	{CAN-2005-2724}
 	- courier 0.47-8 (medium)

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2005-09-01 13:25:58 UTC (rev 1757)
+++ data/embedded-code-copies	2005-09-01 14:36:12 UTC (rev 1758)
@@ -78,3 +78,8 @@
 gnumeric(?)
 python
 php4 (src included, but Debian package links dynamically)
+
+
+tiff:
+wxpythongtk (check, which debian pkg this is in)
+older kdegraphics/kpdf releases < 3.3 embedded a copy

More information about the Secure-testing-commits mailing list