[Secure-testing-commits] r6783 - data/CVE

[jmm-guest at alioth.debian.org]

Author: jmm-guest
Date: 2007-10-03 20:11:36 +0000 (Wed, 03 Oct 2007)
New Revision: 6783

Modified:
   data/CVE/list
Log:
new pidgin issue
fix syntax


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-03 20:03:00 UTC (rev 6782)
+++ data/CVE/list	2007-10-03 20:11:36 UTC (rev 6783)
@@ -389,8 +389,10 @@
 	RESERVED
 CVE-2007-4997
 	RESERVED
-CVE-2007-4996
+CVE-2007-4996 [pidgin MSN nudge DoS]
 	RESERVED
+	- pidgin 2.2.1-1 (medium)
+	NOTE: Gaim not affected, vulnerable code was introduced in 2.2.0
 CVE-2007-4995
 	RESERVED
 CVE-2007-4994
@@ -4055,7 +4057,7 @@
 	- qt4-x11 4.3.0-5
 	NOTE: there is some dissagreement whether qt4 is affected
 CVE-2007-3387 (Integer overflow in the StreamPredictor::StreamPredictor function in ...)
-	{DSA-1357-1 DSA-1355-1 DSA-1354-1 DSA-1352-1 DSA-1350-1 DSA-1349-1 DSA-1348-1 DSA-1347-1 DTSA-49-1 DTSA-50-1 DTSA-54-1 DTSA-62-1}
+	{DSA-1357-1 DSA-1355-1 DSA-1354-1 DSA-1352-1 DSA-1350-1 DSA-1349-1 DSA-1348-1 DSA-1347-1 DTSA-49-1 DTSA-50-1 DTSA-54-1}
 	- poppler 0.5.4-6.1 (bug #435460)
 	- gpdf <removed>
 	- xpdf 3.02-1.1 (bug #435462)