[Secure-testing-commits] r12947 - in data: . CVE NMU

[Giuseppe Iuculano]

Author: derevko-guest
Date: 2009-10-06 21:43:20 +0000 (Tue, 06 Oct 2009)
New Revision: 12947

Modified:
   data/CVE/list
   data/NMU/list
   data/ospu-candidates.txt
   data/spu-candidates.txt
Log:
- htmldoc NMUed
- CVE-2009-3242,CVE-2009-3241 fixed in wireshark 1.2.2-1
- CVE-2009-3490 fixed in wget 1.12-1


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-10-06 21:14:19 UTC (rev 12946)
+++ data/CVE/list	2009-10-06 21:43:20 UTC (rev 12947)
@@ -168,7 +168,7 @@
 CVE-2009-3491 (SQL injection vulnerability in the Kinfusion SportFusion ...)
 	NOT-FOR-US: Kinfusion SportFusion
 CVE-2009-3490 (GNU Wget before 1.12 does not properly handle a '\0' character in a ...)
-	- wget <unfixed> (medium; bug #549293) 
+	- wget 1.12-1 (medium; bug #549293) 
 CVE-2009-3489 (Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 ...)
 	NOT-FOR-US: Adobe Photoshop Elements
 CVE-2009-3488 (Cross-site scripting (XSS) vulnerability in the Bibliography (aka ...)
@@ -736,10 +736,10 @@
 CVE-2009-3243 (Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and ...)
 	- wireshark <not-affected> (Windows-only issue)
 CVE-2009-3242 (Unspecified vulnerability in packet.c in the GSM A RR dissector in ...)
-	- wireshark <unfixed> (low; bug #547704)
+	- wireshark 1.2.2-1 (low; bug #547704)
 	NOTE: no-dsa candidate, application crash
 CVE-2009-3241 (Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark ...)
-	- wireshark <unfixed> (low; bug #547704)
+	- wireshark 1.2.2-1 (low; bug #547704)
 CVE-2009-3240 (Cross-site scripting (XSS) vulnerability in the Happy Linux XF-Section ...)
 	NOT-FOR-US: module for XOOPS
 CVE-2009-3239 (Buffer overflow in the EMF parser implementation in OpenOffice.org ...)
@@ -1396,7 +1396,7 @@
 	- silc-server 1.1.2-1 (low)
 	NOTE: silc-client/silc-server use libsilc from silc-toolkit since 1.1-2
 CVE-2009-3050 (Buffer overflow in the set_page_size function in util.cxx in HTMLDOC ...)
-	- htmldoc <unfixed> (low; bug #537637)
+	- htmldoc 1.8.27-4.1 (low; bug #537637)
 	[etch] - htmldoc <no-dsa> (Minor issue)
 	[lenny] - htmldoc <no-dsa> (Minor issue)
 CVE-2009-3049 (Opera before 10.00 does not properly display all characters in ...)

Modified: data/NMU/list
===================================================================
--- data/NMU/list	2009-10-06 21:14:19 UTC (rev 12946)
+++ data/NMU/list	2009-10-06 21:43:20 UTC (rev 12947)
@@ -169,3 +169,4 @@
 2009-10-03 wxwidgets2.6 2.6.3.2.2-3.1
 2009-10-03 kolab-cyrus-imapd 2.2.13-5.1
 2009-10-06 newt 0.52.10-4.1
+2009-10-06 htmldoc 1.8.27-4.1

Modified: data/ospu-candidates.txt
===================================================================
--- data/ospu-candidates.txt	2009-10-06 21:14:19 UTC (rev 12946)
+++ data/ospu-candidates.txt	2009-10-06 21:43:20 UTC (rev 12947)
@@ -314,6 +314,7 @@
 
 htmldoc (CVE-2009-3050)
 #537637
+notified maintainer through initial bugreport
 
 --
 

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2009-10-06 21:14:19 UTC (rev 12946)
+++ data/spu-candidates.txt	2009-10-06 21:43:20 UTC (rev 12947)
@@ -88,6 +88,7 @@
 
 htmldoc (CVE-2009-3050)
 #537637
+notified maintainer through initial bugreport
 
 --