[Secure-testing-commits] r10776 - in data: CVE DTSA

[nion at alioth.debian.org]

Author: nion
Date: 2008-12-22 16:42:28 +0000 (Mon, 22 Dec 2008)
New Revision: 10776

Modified:
   data/CVE/list
   data/DTSA/list
Log:
DTSA-181-1 (mplayer)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-12-22 09:14:11 UTC (rev 10775)
+++ data/CVE/list	2008-12-22 16:42:28 UTC (rev 10776)
@@ -1047,6 +1047,7 @@
 	- xine-lib 1.1.14-3
 	- faad2 2.6.1-1
 	- mplayer 1.0~rc2-20 (bug #407010)
+	[lenny] - mplayer 1.0~rc2-17+lenny3
 	NOTE: overlaps with CVE-2008-4610, same aac issue
 CVE-2008-5243 (The real_parse_headers function in demux_real.c in xine-lib 1.1.12, ...)
 	- xine-lib <unfixed> (unimportant; bug #508716)

Modified: data/DTSA/list
===================================================================
--- data/DTSA/list	2008-12-22 09:14:11 UTC (rev 10775)
+++ data/DTSA/list	2008-12-22 16:42:28 UTC (rev 10776)
@@ -532,6 +532,9 @@
 [November 29th, 2008] DTSA-179-1 geshi - multiple issues
 	{CVE-2008-5185 CVE-2008-5186}
 	[lenny] - geshi 1.0.7.22-1+lenny1
-[December 19th, 2008] DTSA-180-1 courier-authlib SQL injection
+[December 19th, 2008] DTSA-180-1 courier-authlib - sql injection
 	{CVE-2008-2380}
 	[lenny] - courier-authlib 0.61.0-1+lenny1
+[December 22nd, 2008] DTSA-181-1 mplayer - arbitrary code execution
+	{CVE-2008-5616}
+	[lenny] - mplayer 1.0~rc2-17+lenny2