[Secure-testing-commits] r9927 - in data: . CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Wed Oct 1 20:56:27 UTC 2008
Author: jmm-guest
Date: 2008-10-01 20:56:25 +0000 (Wed, 01 Oct 2008)
New Revision: 9927
Modified:
data/CVE/list
data/spu-candidates.txt
Log:
start triaging temp file issue mass bug filing
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-10-01 20:55:30 UTC (rev 9926)
+++ data/CVE/list 2008-10-01 20:56:25 UTC (rev 9927)
@@ -1,3 +1,12 @@
+CVE-2008-XXXX [digitaldj: insecure temp file]
+ - digitaldj 0.7.5-6.1 (low; bug #496399)
+ [etch] - digitaldj <no-dsa> (Minor issue)
+CVE-2008-XXXX [cdrw-taper: insecure temp file]
+ - cdrw-taper 0.4-2.1 (low; bug #496380)
+ [etch] - cdrw-taper <no-dsa> (Minor issue)
+CVE-2008-XXXX [gdrae: insecure temp file]
+ - gdrae 0.1-1.1 (low; bug #496378)
+ [etch] - gdrae <no-dsa> (Minor issue)
CVE-2008-XXXX [sabre: insecure temp file]
- sabre <unfixed> (low; bug #433996)
NOTE: CVE id requested
@@ -1369,6 +1378,7 @@
- emacs-jabber 0.7.91-2 (low; bug #496428)
CVE-2008-XXXX [xastir: insecure temp files]
- xastir 1.9.2-1.1 (low; bug #496383)
+ [etch] - xastir <no-dsa> (Minor issue)
CVE-2008-XXXX [mon: insecure temp files]
- mon 0.99.2-13 (medium; bug #496398)
CVE-2008-3790 (The REXML module in Ruby 1.8.6 through 1.8.6-p287, 1.8.7 through ...)
@@ -1463,9 +1473,10 @@
- rancid 2.3.2~a8-2 (low; bug #496426)
CVE-2008-XXXX [vdr: insecure temp file]
- vdr 1.6.0-6 (low; bug #496421)
+ [etch] - vdr <no-dsa> (Minor issue)
CVE-2008-XXXX [lazarus: insecure temp file]
- - lazarus 0.9.24-0-11 (unimportant; bug #496377)
- NOTE: Not exploitable, see comments in buglog
+ - lazarus 0.9.24-0-11 (low; bug #496377)
+ [etch] - lazarus <no-dsa> (Minor issue)
CVE-2008-XXXX [crossfire-maps: insecure temp file]
- crossfire-maps 1.11.0-2 (low)
CVE-2008-3794 (Integer signedness error in the mms_ReceiveCommand function in ...)
Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt 2008-10-01 20:55:30 UTC (rev 9926)
+++ data/spu-candidates.txt 2008-10-01 20:56:25 UTC (rev 9927)
@@ -45,6 +45,11 @@
--
+cdrw-taper
+#496380
+
+--
+
cecilia (CVE-2008-1832)
#476321
notified maintainer
@@ -57,6 +62,11 @@
--
+digitaldj
+#496399
+
+--
+
emacs21 (CVE-2007-6109/CVE-2008-1694)
bug #455433, bug #476612
notified maintainer
@@ -79,6 +89,11 @@
--
+gdrae
+#496378
+
+--
+
ipsec-tools (CVE-2008-3651)
http://sourceforge.net/mailarchive/forum.php?thread_name=48a0c7a0.qPeWZAE0PY8bDDq%2B%25olel%40ans.pl&forum_name=ipsec-tools-devel
notified maintainer
@@ -91,6 +106,11 @@
--
+lazarus
+#496377
+
+--
+
libapache2-mod-perl2 (CVE-2007-1349)
http://svn.apache.org/viewvc?view=rev&revision=521584
#433549
@@ -222,6 +242,11 @@
--
+vdr
+#496421
+
+--
+
vobcopy (CVE-2007-5718)
bug #448319
notified maintainer
@@ -240,6 +265,11 @@
--
+xastir
+#496383
+
+--
+
xemacs21 (CVE-2007-6109/CVE-2008-1694)
bug #457764, bug #476613
notified maintainer
More information about the Secure-testing-commits
mailing list