[Secure-testing-commits] r7920 - in data: CVE DSA

jmm-guest at alioth.debian.org jmm-guest at alioth.debian.org
Mon Jan 14 20:17:22 UTC 2008 

Author: jmm-guest
Date: 2008-01-14 20:17:21 +0000 (Mon, 14 Jan 2008)
New Revision: 7920

Modified:
   data/CVE/list
   data/DSA/list
Log:
mark some sarge issues as still unfixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-01-14 19:36:42 UTC (rev 7919)
+++ data/CVE/list	2008-01-14 20:17:21 UTC (rev 7920)
@@ -601,12 +601,11 @@
 	{DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
-	NOTE: see http://www.postgresql.org/about/news.905
 CVE-2007-6600 (PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 ...)
 	{DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
-	NOTE: see http://www.postgresql.org/about/news.905
+	[sarge] - postgresql <unfixed>
 CVE-2007-6597 (Multiple cross-site scripting (XSS) vulnerabilities in IPortalX before ...)
 	NOT-FOR-US: IPortalX
 CVE-2007-6599 (Race condition in fileserver in OpenAFS 1.3.50 through 1.4.5 and 1.5.0 ...)
@@ -1873,7 +1872,7 @@
 	{DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
-	NOTE: see http://www.postgresql.org/about/news.905
+	[sarge] - postgresql <unfixed>
 CVE-2007-6066
 	RESERVED
 CVE-2007-6065
@@ -5942,7 +5941,7 @@
 	{DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
-	NOTE: see http://www.postgresql.org/about/news.905
+	[sarge] - postgresql <unfixed>
 CVE-2007-4771
 	RESERVED
 CVE-2007-4770
@@ -5951,7 +5950,7 @@
 	{DSA-1460-1}
 	- postgresql-8.2 8.2.6-1
 	- postgresql-8.1 8.1.11-1
-	NOTE: see http://www.postgresql.org/about/news.905
+	[sarge] - postgresql <unfixed>
 CVE-2007-4768 (Heap-based buffer overflow in Perl-Compatible Regular Expression ...)
 	{DSA-1399-1 DTSA-77-1}
 	- pcre3 7.3-1

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2008-01-14 19:36:42 UTC (rev 7919)
+++ data/DSA/list	2008-01-14 20:17:21 UTC (rev 7920)
@@ -1,7 +1,7 @@
 [14 Jan 2008] DSA-1463-1 postgresql-7.4 - several
 	{CVE-2007-3278 CVE-2007-4769 CVE-2007-4772 CVE-2007-6067 CVE-2007-6600 CVE-2007-6601}
 	[etch] - postgresql-7.4 7.4.19-0etch1
-	TODO: what about sarge as one CVE id fix is missing?
+	[sarge] - postgresql 7.4.7-6sarge6
 [13 Jan 2008] DSA-1462-1 hplip - missing input sanitising
 	{CVE-2007-5208}
 	[etch] - hplip 1.6.10-3etch1

More information about the Secure-testing-commits mailing list