[Secure-testing-commits] r4077 - in data: CVE DSA

[Florian Weimer]

Author: fw
Date: 2006-05-27 07:00:42 +0000 (Sat, 27 May 2006)
New Revision: 4077

Modified:
   data/CVE/list
   data/DSA/list
Log:
DSA-1075-1, DSA-1076-1, DSA-1077-1
(DSA-1075-1 lacks a CVE.)


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-05-26 09:14:21 UTC (rev 4076)
+++ data/CVE/list	2006-05-27 07:00:42 UTC (rev 4077)
@@ -20262,10 +20262,9 @@
 CVE-2004-1618 (Vypress Tonecast 1.3 and earlier allows remote attackers to cause a ...)
 	NOT-FOR-US: Tonecast
 CVE-2004-1617 (Lynx allows remote attackers to cause a denial of service (infinite ...)
-	NOTE: This is fixed in lynx-cur, maybe a fix can be extracted from there
-	- lynx <unfixed> (bug #296340; low)
-	[sarge] - lynx <no-dsa> (Unimportant for a single-instance browser like Lynx)
+	- lynx 2.8.5-2sarge2 (bug #296340; low)
 	- lynx-cur 2.8.6-6 (low)
+	- lynx-ssl <removed>
 CVE-2004-1616 (Links allows remote attackers to cause a denial of service (memory ...)
 	- links 0.99+1.00pre12-1 (bug #296341; low) 
 CVE-2004-1615 (Opera allows remote attackers to cause a denial of service (invalid ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2006-05-26 09:14:21 UTC (rev 4076)
+++ data/DSA/list	2006-05-27 07:00:42 UTC (rev 4077)
@@ -1,3 +1,12 @@
+[26 May 2006] DSA-1077-1 lynx-ssl - programming error
+        {CVE-2004-1617}
+        [woody] - lynx-ssl 1:2.8.4.1b-3.3
+[26 May 2006] DSA-1076-1 lynx - programming error
+        {CVE-2004-1617}
+        [woody] - lynx 2.8.4.1b-3.4
+        [sarge] - lynx 2.8.5-2sarge2
+[26 May 2006] DSA-1075-1 awstats - programming error
+        [sarge] - awstats 6.4-1sarge3 (bug #365910)
 [24 May 2006] DSA-1074-1 mpg123 - buffer overflow
         {CVE-2006-1655}
         [sarge] - mpg123 0.59r-20sarge1