[Secure-testing-commits] r4440 - in data: CVE DSA

[Alec Berryman]

Author: alec-guest
Date: 2006-07-21 14:31:02 +0000 (Fri, 21 Jul 2006)
New Revision: 4440

Modified:
   data/CVE/list
   data/DSA/list
Log:
* DSA-1114
* DSA-1115
* CVE-2006-3668 (libdumb): fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-07-21 02:42:10 UTC (rev 4439)
+++ data/CVE/list	2006-07-21 14:31:02 UTC (rev 4440)
@@ -140,7 +140,7 @@
 CVE-2006-3669 (Mercury Messenger, possibly 1.7.1.1 and other versions, when running ...)
 	NOT-FOR-US: Mercury Messenger
 CVE-2006-3668 (Heap-based buffer overflow in the it_read_envelope function in Dynamic ...)
-	- libdumb <unfixed> (bug #379064; medium)
+	- libdumb 1:0.9.3-5 (bug #379064; medium)
 CVE-2006-3667 (Unspecified vulnerability in Sybase/Financial Fusion Consumer Banking ...)
 	NOT-FOR-US: Sybase/Financial Fusion Consumer Banking Suite
 CVE-2006-3666 (SQL injection vulnerability in AjaxPortal 3.0, with magic_quotes_gpc ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2006-07-21 02:42:10 UTC (rev 4439)
+++ data/DSA/list	2006-07-21 14:31:02 UTC (rev 4440)
@@ -1,3 +1,10 @@
+[21 Jul 2006] DSA-1115 gnupg2 - integer overflow
+        {CVE-2006-3082}
+        [sarge] - gnupg 1.4.1-1.sarge4
+        [sarge] - gnupg2 1.9.15-6sarge1
+[21 Jul 2006] DSA-1114 hashcash - buffer overflow
+        {CVE-2006-3251}
+        [sarge] - hashcash 1.17-1sarge1
 [18 Jul 2006] DSA-1113 zope2.7 - programming error
         {CVE-2006-3458}
         [sarge] - zope2.7 2.7.5-2sarge2