[Secure-testing-commits] r7880 - in data: CVE NMU

nion at alioth.debian.org nion at alioth.debian.org
Fri Jan 11 15:37:03 UTC 2008 

Author: nion
Date: 2008-01-11 15:37:02 +0000 (Fri, 11 Jan 2008)
New Revision: 7880

Modified:
   data/CVE/list
   data/NMU/list
Log:
latest vlc security issues fixed in 0.8.6.c-4.1


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-01-11 13:42:19 UTC (rev 7879)
+++ data/CVE/list	2008-01-11 15:37:02 UTC (rev 7880)
@@ -516,20 +516,18 @@
 	NOT-FOR-US: Blakord Portal
 CVE-2007-6611 (Cross-site scripting (XSS) vulnerability in view.php in Mantis before ...)
 	- mantis 1.0.8-4 (low; bug #458377)
-CVE-2007-XXXX [vlc mozilla plugin arbitrary file overwrite vulnerability]
-	- vlc <unfixed> (high; bug #458318)
+CVE-2007-XXXX [vlc arbitrary file overwrite vulnerability via crafted m3u playlists]
+	- vlc 0.8.6.c-4.1 (medium; bug #458318)
 	NOTE: see https://trac.videolan.org/vlc/ticket/1371
 CVE-2007-XXXX [vlc format string vulnerability in built-in web-server]
-	- vlc <unfixed> (bug #458318)
+	- vlc 0.8.6.c-4.1 (medium; bug #458318)
 	NOTE: see http://www.securityfocus.com/archive/1/485488/30/0/threaded
 CVE-2007-XXXX [vlc buffer overflow in subtitle handling]
-	- vlc <unfixed> (low; bug #458318)
+	- vlc 0.8.6.c-4.1 (low; bug #458318)
 	NOTE: see http://www.securityfocus.com/archive/1/485488/30/0/threaded
 CVE-2007-XXXX [vlc remote denial of service in rtsp module]
-	- vlc <unfixed> (unimportant; bug #458318)
+	- vlc 0.8.6.c-4.1 (unimportant; bug #458318)
 	NOTE: That's hardly a security problem, just a bug
-CVE-2007-XXXX [vlc insecure handling of vlcopt]
-	- vlc <unfixed> (medium; bug #458318)
 CVE-2007-6598 (Dovecot before 1.0.10, with certain configuration options including ...)
 	{DSA-1457-1}
 	- dovecot 1:1.0.10-1 (low; bug #458315)

Modified: data/NMU/list
===================================================================
--- data/NMU/list	2008-01-11 13:42:19 UTC (rev 7879)
+++ data/NMU/list	2008-01-11 15:37:02 UTC (rev 7880)
@@ -63,3 +63,4 @@
 2007-12-21 libexif 0.6.16-2.1
 2007-12-25 tcpreen 1.4.3-0.3
 2007-01-06 exiftags 1.01-0.1
+2007-01-11 vlc 0.8.6.c-4.1

More information about the Secure-testing-commits mailing list