[Secure-testing-commits] r9973 - / data data/CVE

Fri Oct 3 19:13:42 UTC 2008

Author: jmm-guest
Date: 2008-10-03 19:13:41 +0000 (Fri, 03 Oct 2008)
New Revision: 9973

Modified:
   data/CVE/list
   data/spu-candidates.txt
   tmp.txt
Log:
more SPUs
r-base-core-ra and dtc tracked, but not in Etch


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2008-10-03 18:42:43 UTC (rev 9972)
+++ data/CVE/list	2008-10-03 19:13:41 UTC (rev 9973)
@@ -1532,6 +1532,7 @@
 	- mafft 6.240-2 (low; bug #496366)
 CVE-2008-XXXX [xen-3: insecure temp file]
 	- xen-3 <unfixed> (low; bug #496367)
+        [etch] - xen-3 <no-dsa> (Minor issue)
 CVE-2008-XXXX [mgetty: insecure temp files]
 	- mgetty 1.1.36-1.3 (low; bug #496403)
 CVE-2008-XXXX [sympa: multiple insecure temp files]
@@ -1554,6 +1555,7 @@
 	[etch] - cdcontrol <no-dsa> (Minor issue)
 CVE-2008-XXXX [sgml2x: insecure temp file]
 	- sgml2x 1.0.0-11.2 (low; bug #496368)
+        [etch] - sgml2x <no-dsa> (Minor issue)
 CVE-2008-XXXX [dtc-common: insecure temp file]
 	- dtc 0.29.10-1 (low; bug #496362)
 CVE-2008-XXXX [liguidsoap: insecure temp file]
@@ -1595,7 +1597,8 @@
 CVE-2008-XXXX [lazarus: insecure temp file]
 	- lazarus 0.9.24-0-11 (low; bug #496377)
 CVE-2008-XXXX [crossfire-maps: insecure temp file]
-	- crossfire-maps 1.11.0-2 (low)
+	- crossfire-maps 1.11.0-2 (low; bug #496358)
+        [etch] - crossfire-maps <no-dsa> (Minor issue)
 CVE-2008-3794 (Integer signedness error in the mms_ReceiveCommand function in ...)
 	{DTSA-166-1}
 	- vlc 0.8.6.h-4 (medium; bug #496265)

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2008-10-03 18:42:43 UTC (rev 9972)
+++ data/spu-candidates.txt	2008-10-03 19:13:41 UTC (rev 9973)
@@ -87,6 +87,11 @@
 
 --
 
+crossfire-maps
+#496358
+
+--
+
 digitaldj
 #496399
 notified maintainer
@@ -264,6 +269,11 @@
 
 --
 
+sgml2x
+#496368
+
+--
+
 sip-tester (CVE-2008-1959, CVE-2008-2085)
 #479039
 notified maintainer
@@ -361,6 +371,11 @@
 
 --
 
+xen-3
+#496367
+
+--
+
 xfce4 (CVE-2007-6351 CVE-2007-6352)
 notified maintainer
 

Modified: tmp.txt
===================================================================
--- tmp.txt	2008-10-03 18:42:43 UTC (rev 9972)
+++ tmp.txt	2008-10-03 19:13:41 UTC (rev 9973)
@@ -20,11 +20,6 @@
  Binary-package: printfilters-ppd (2.13-9)
 
 
- Binary-package: r-base-core-ra (1.1.1-1)
- Binary-package: crossfire-maps (1.11.0-1)
- Binary-package: sgml2x (1.0.0-11.1)
- Binary-package: xen-utils-3.2-1 (3.2.1-2)
- Binary-package: dtc-common (0.29.6-1)
  Binary-package: lustre-tests (1.6.5-1)
  Binary-package: freevo (1.8.1-0)
  Binary-package: fml (4.0.3.dfsg-2)
@@ -80,6 +75,9 @@
  Binary-package: cman (2.20080629-1)
  Binary-package: wims (3.62-13)
  Binary-package: konwert-filters (1.8-11.1)
+ Binary-package: crossfire-maps (1.11.0-1)
+ Binary-package: sgml2x (1.0.0-11.1)
+ Binary-package: xen-utils-3.2-1 (3.2.1-2)
 
 
 Non-issues (not exploitable, only examples or very exotic use cases,


