[Secure-testing-commits] r12061 - in data: . CVE

[Moritz Muehlenhoff]

Author: jmm-guest
Date: 2009-06-06 20:30:55 +0000 (Sat, 06 Jun 2009)
New Revision: 12061

Modified:
   data/CVE/list
   data/embedded-code-copies
Log:
- more embedded code copies from the BTS
- bugnum
- new pgp4pine issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-06-06 20:05:59 UTC (rev 12060)
+++ data/CVE/list	2009-06-06 20:30:55 UTC (rev 12061)
@@ -1,3 +1,8 @@
+CVE-2009-XXXX [pgp4pine off-by-one]
+	- pgp4pine <unfixed> (bug #457947)
+	[etch] - pgp4pine <no-dsa> (Contrib not supported)
+	[lenny] - pgp4pine <no-dsa> (Contrib not supported)
+	NOTE: http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0122.html
 CVE-2009-1932 (Multiple integer overflows in the (1) user_info_callback, (2) ...)
 	- gst-plugins-good0.10 0.10.15-2 (bug #531631)
 CVE-2009-1931
@@ -31375,7 +31380,7 @@
 CVE-2007-2757 (Multiple cross-site scripting (XSS) vulnerabilities in Redoable 1.2 ...)
 	NOT-FOR-US: Redoable
 CVE-2007-2756 (The gdPngReadData function in libgd 2.0.34 allows user-assisted ...)
-	- libgd2 2.0.35.dfsg-1 (bug #426100; bug #426099; low)
+	- libgd2 2.0.35.dfsg-1 (bug #426100; bug #426099; bug #425584; low)
 	[etch] - libgd <no-dsa> (Minor issue)
 	[sarge] - libgd <no-dsa> (Minor issue)
 	[etch] - libgd2 <no-dsa> (Minor issue)

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2009-06-06 20:05:59 UTC (rev 12060)
+++ data/embedded-code-copies	2009-06-06 20:30:55 UTC (rev 12061)
@@ -564,6 +564,9 @@
 	- xen-3 <unfixed> (embed)
 	- xen-unstable <unfixed> (embed)
 
+vgabios
+	- kvm <unfixed> (embed; bug #489442)
+
 bochs
 	- kvm <unfixed> (embed; bug #489442)
 
@@ -770,6 +773,7 @@
 
 libzip
 	- php5 <unfixed> (fork)
+	- odt2txt <unfixed> (embed; bug #523808)
 
 json.php (not packaged; should be replaced with php's built-in functions)
 	- moodle <unfixed>