[Secure-testing-commits] r14413 - in data: CVE DSA

[Michael Gilbert]

Author: gilbert-guest
Date: 2010-04-06 04:34:19 +0000 (Tue, 06 Apr 2010)
New Revision: 14413

Modified:
   data/CVE/list
   data/DSA/list
Log:
new kernel issue; barnowl fixed; CVE-2009-1188 in lenny's poppler is not fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-04-05 23:29:04 UTC (rev 14412)
+++ data/CVE/list	2010-04-06 04:34:19 UTC (rev 14413)
@@ -252,8 +252,10 @@
 	RESERVED
 CVE-2010-1149
 	RESERVED
-CVE-2010-1148
+CVE-2010-1148 [linux-2.6: cifs null ptr dereference]
 	RESERVED
+	- linux-2.6 <unfixed>
+	[lenny] - linux-2.6 <not-affected> (vulnerable code not yet present)
 CVE-2010-1147
 	RESERVED
 CVE-2010-1146
@@ -1339,7 +1341,7 @@
 CVE-2010-0794
 	RESERVED
 CVE-2010-0793 (Buffer overflow in BarnOwl before 1.5.1 allows remote attackers to ...)
-	- barnowl <undetermined> (bug #574418)
+	- barnowl 1.5.1-1 (bug #574418)
 CVE-2010-0792 (fcrontab in fcron before 3.0.5 allows local users to read arbitrary ...)
 	- fcron <unfixed> (low; bug #572587)
 	[lenny] - fcron <no-dsa> (Minor issue)
@@ -14315,6 +14317,7 @@
 	{DSA-2028-1 DSA-1941-1}
 	- poppler 0.10.6-1 (medium; bug #524806)
 	[etch] - poppler <not-affected> (SplashBitmap code not present)
+	TODO: next stable release: [lenny] - poppler 0.8.7-3.1
 	- xpdf 3.02-2 (bug #575779)
 	- kdegraphics 4:4.0
 	- swftools <removed>

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2010-04-05 23:29:04 UTC (rev 14412)
+++ data/DSA/list	2010-04-06 04:34:19 UTC (rev 14413)
@@ -320,7 +320,7 @@
 	[etch] - wireshark 0.99.4-5.etch.4
 	[lenny] - wireshark 1.0.2-3+lenny7
 [25 Nov 2009] DSA-1941-1 poppler - several vulnerabilities
-	{CVE-2009-0755 CVE-2009-1187 CVE-2009-1188 CVE-2009-3603 CVE-2009-3604 CVE-2009-3605 CVE-2009-3606 CVE-2009-3607 CVE-2009-3608 CVE-2009-3609 CVE-2009-3938}
+	{CVE-2009-0755 CVE-2009-1187 CVE-2009-3603 CVE-2009-3604 CVE-2009-3605 CVE-2009-3606 CVE-2009-3607 CVE-2009-3608 CVE-2009-3609 CVE-2009-3938}
 	[lenny] - poppler 0.8.7-3
 [25 Nov 2009] DSA-1940-1 php5 - multiple issues
 	{CVE-2009-2626 CVE-2009-2687 CVE-2009-3291 CVE-2009-3292 CVE-2009-4017}