[Secure-testing-commits] r8566 - in data: CVE DSA

[jmm-guest at alioth.debian.org]

Author: jmm-guest
Date: 2008-04-18 06:46:47 +0000 (Fri, 18 Apr 2008)
New Revision: 8566

Modified:
   data/CVE/list
   data/DSA/list
Log:
policykit fix
add one missing vorbis CVE ID fixed in DSA


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-04-17 22:59:31 UTC (rev 8565)
+++ data/CVE/list	2008-04-18 06:46:47 UTC (rev 8566)
@@ -390,7 +390,7 @@
 CVE-2008-1659
 	RESERVED
 CVE-2008-1658 (Format string vulnerability in the grant helper ...)
-	- policykit <unfixed> (medium; bug #476615; bug #476616)
+	- policykit 0.8-1 (medium; bug #476615; bug #476616)
 CVE-2008-1657 (OpenSSH before 4.9 allows remote authenticated users to bypass the ...)
 	- openssh 1:4.7p1-8 (low; bug #475156)
 CVE-2008-1656 (Adobe ColdFusion 8 and 8.0.1 does not properly implement the public ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2008-04-17 22:59:31 UTC (rev 8565)
+++ data/DSA/list	2008-04-18 06:46:47 UTC (rev 8566)
@@ -300,7 +300,7 @@
 	[etch] - xine-lib 1.1.2+dfsg-5
 	[sarge] - xine-lib 1.0.1-1sarge6
 [21 Jan 2008] DSA-1471-1 libvorbis - several vulnerabilities
-	{CVE-2007-3106 CVE-2007-4029 CVE-2007-4066}
+	{CVE-2007-3106 CVE-2007-4029 CVE-2007-4065 CVE-2007-4066}
 	[etch] - libvorbis 1.1.2.dfsg-1.3
 	[sarge] - libvorbis 1.1.0-2
 [20 Jan 2008] DSA-1470-1 horde3 - missing input sanitising