[Secure-testing-commits] r6570 - in data: CVE DSA

jmm-guest at alioth.debian.org jmm-guest at alioth.debian.org
Mon Sep 10 23:45:08 UTC 2007 

Author: jmm-guest
Date: 2007-09-10 23:45:08 +0000 (Mon, 10 Sep 2007)
New Revision: 6570

Modified:
   data/CVE/list
   data/DSA/list
Log:
DSA updates


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-09-10 23:29:02 UTC (rev 6569)
+++ data/CVE/list	2007-09-10 23:45:08 UTC (rev 6570)
@@ -81,8 +81,9 @@
 	NOTE: 1.6.dfsg.1-7 somehow already includes the updated version
 CVE-2007-4731
 	RESERVED
-CVE-2007-4730
+CVE-2007-4730 [xorg composite overflow]
 	RESERVED
+	NOTE: XFree86 is not affected
 CVE-2007-4729
 	RESERVED
 CVE-2007-4728

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2007-09-10 23:29:02 UTC (rev 6569)
+++ data/DSA/list	2007-09-10 23:45:08 UTC (rev 6570)
@@ -1,13 +1,20 @@
-[09 Sep 2007] DSA-1370-1 phpmyadmin - several vulnerabilities
+[09 Sep 2007] DSA-1372-1 xorg-server - privilege escalation
+        {CVE-2007-4730}
+        [etch] - xorg-server 2:1.1.1-21etch1
+[10 Sep 2007] DSA-1370-2 phpmyadmin - several vulnerabilities
 	{CVE-2006-6942 CVE-2006-6944 CVE-2007-1325 CVE-2007-1395 CVE-2007-2245}
-	[sarge] - phpmyadmin 4:2.6.2-3sarge3
+	[sarge] - phpmyadmin 4:2.6.2-3sarge5
 	[etch] - phpmyadmin 4:2.9.1.1-4
+[06 Sep 2007] DSA-1369-1 gforge - SQL injection
+        {CVE-2007-3913}
+        [sarge] - gforge 3.1-31sarge2
+        [etch] - gforge 4.5.14-22etch1
 [04 Sep 2007] DSA-1368-1 librpcsecgss - arbitrary code execution
         {CVE-2007-3999}
         [etch] - librpcsecgss 0.14-2etch1
-[04 Sep 2007] DSA-1367-1 krb5 - arbitrary code execution
+[06 Sep 2007] DSA-1367-2 krb5 - arbitrary code execution
         {CVE-2007-4743}
-        [etch] - krb5 1.4.4-7etch3
+        [etch] - krb5 1.4.4-7etch4
 [02 Sep 2007] DSA-1288-2 pptpd - regression
 	{CVE-2007-0244}
 	[etch] - pptpd 1.3.0-2etch2
@@ -17,6 +24,7 @@
 [01 Sep 2007] DSA-1365-1 id3lib3.8.3
         {CVE-2007-4460}
         [sarge] - id3lib3.8.3 3.8.3-4.1sarge1
+        [etch] - id3lib3.8.3 3.8.3-6etch1
 [01 Sep 2007] DSA-1364-1 vim
         {CVE-2007-2438 CVE-2007-2953}
         [sarge] - vim 1:6.3-071+1sarge2

More information about the Secure-testing-commits mailing list