[Secure-testing-commits] r12341 - in data: CVE DSA

Florian Weimer fw at alioth.debian.org
Tue Jul 14 19:41:45 UTC 2009


Author: fw
Date: 2009-07-14 19:41:43 +0000 (Tue, 14 Jul 2009)
New Revision: 12341

Modified:
   data/CVE/list
   data/DSA/list
Log:
DSA-1833 fallout

Remove the statements from the DSA file so that the details
are not erroneously copied into the CVE issue.


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-07-14 19:34:09 UTC (rev 12340)
+++ data/CVE/list	2009-07-14 19:41:43 UTC (rev 12341)
@@ -1315,6 +1315,9 @@
 	RESERVED
 CVE-2009-1892
 	RESERVED
+	- dhcp3 <unfixed> (low)
+	[etch] - dhcp3 <not-affected> (problematic assert is not present)
+	[lenny] - dhcp3 3.1.1-6+lenny2 (low)
 CVE-2009-1891 [apache2 mod_deflate DoS]
 	RESERVED
 	- apache2 2.2.11-7 (medium; bug #534712)
@@ -5550,6 +5553,10 @@
 	RESERVED
 CVE-2009-0692
 	RESERVED
+	- dhcp3 <unfixed> (medium)
+	[etch] - dhcp3 3.0.4-13+etch2 (medium)
+	[lenny] - dhcp3 3.1.1-6+lenny2 (medium)
+	NOTE: dhcp in etch is not affected.
 CVE-2009-0691 (The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit ...)
 	NOT-FOR-US: Foxit JPEG2000/JBIG2 Decoder add-on
 CVE-2009-0690 (The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2009-07-14 19:34:09 UTC (rev 12340)
+++ data/DSA/list	2009-07-14 19:41:43 UTC (rev 12341)
@@ -1,7 +1,5 @@
 [14 Jul 2009] DSA-1833-1 dhcp3 - arbitrary code execution
 	{CVE-2009-0692 CVE-2009-1892}
-	[etch] - dhcp3 3.0.4-13+etch2
-	[lenny] - dhcp3 3.1.1-6+lenny2
 [13 Jul 2009] DSA-1832-1 camlimages - arbitrary code execution
 	{CVE-2009-2295}
 	[etch] - camlimages 2.20-8+etch1




More information about the Secure-testing-commits mailing list