[Secure-testing-commits] r16234 - in data: . CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Tue Feb 22 22:08:38 UTC 2011


Author: jmm
Date: 2011-02-22 22:08:25 +0000 (Tue, 22 Feb 2011)
New Revision: 16234

Modified:
   data/CVE/list
   data/ospu-candidates.txt
   data/spu-candidates.txt
Log:
- filed bugs for evince/vftool issues, latter no-dsa




Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-02-22 21:51:23 UTC (rev 16233)
+++ data/CVE/list	2011-02-22 22:08:25 UTC (rev 16234)
@@ -1625,10 +1625,11 @@
 	RESERVED
 CVE-2011-0433 [linetoken() buffer overflow]
 	RESERVED
-	- evince <unfixed>
-	- vftool <unfixed>
+	- evince <unfixed> (bug #614668)
+	- vftool <unfixed> (low; bug #614669)
+	[squeeze] - vftool <no-dsa> (Minor issue)
+	[lenny] - vftool <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=640923
-	TODO: check vftool (also against the older parseafm issue in evince)
 CVE-2011-0432
 	RESERVED
 CVE-2011-0431 (The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel ...)

Modified: data/ospu-candidates.txt
===================================================================
--- data/ospu-candidates.txt	2011-02-22 21:51:23 UTC (rev 16233)
+++ data/ospu-candidates.txt	2011-02-22 22:08:25 UTC (rev 16234)
@@ -710,6 +710,11 @@
 
 --
 
+vftool (CVE-2011-0433)
+https://bugzilla.gnome.org/show_bug.cgi?id=640923
+
+--
+
 planet (CVE-2009-2937)
 bug #546178
 notified maintainer through initial bugreport

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2011-02-22 21:51:23 UTC (rev 16233)
+++ data/spu-candidates.txt	2011-02-22 22:08:25 UTC (rev 16234)
@@ -57,6 +57,12 @@
 
 --
 
+vftool (CVE-2011-0433)
+https://bugzilla.gnome.org/show_bug.cgi?id=640923
+
+
+--
+
 pidgin (CVE-2011-XXXX)
 http://www.pidgin.im/news/security/?id=50
 
@@ -70,3 +76,7 @@
 wireshark (CVE-2011-0538)
 #613202
 awaiting maintainer response
+
+
+
+




More information about the Secure-testing-commits mailing list