[Secure-testing-commits] r23622 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2013-09-11 10:44:47 +0000 (Wed, 11 Sep 2013)
New Revision: 23622

Modified:
   data/CVE/list
Log:
Add fixed versions for filezilla CVEs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-09-11 09:05:15 UTC (rev 23621)
+++ data/CVE/list	2013-09-11 10:44:47 UTC (rev 23622)
@@ -1914,7 +1914,7 @@
 CVE-2013-4852 (Integer overflow in PuTTY 0.62 and earlier, WinSCP before 5.1.6, and ...)
 	{DSA-2736-1}
 	- putty 0.63-1 (bug #718779)
-	- filezilla <unfixed> (low; bug #718800)
+	- filezilla 3.7.3-1 (low; bug #718800)
 	[squeeze] - filezilla <no-dsa> (Minor issue)
 	[wheezy] - filezilla <no-dsa> (Minor issue)
 	NOTE: http://www.securityfocus.com/archive/1/527763/30/0
@@ -3450,21 +3450,21 @@
 CVE-2013-4208 (The rsa_verify function in PuTTY before 0.63 (1) does not clear ...)
 	{DSA-2736-1}
 	- putty 0.63-1
-	- filezilla <unfixed> (low; bug #719070)
+	- filezilla 3.7.3-1 (low; bug #719070)
 	[squeeze] - filezilla <no-dsa> (Minor issue)
 	[wheezy] - filezilla <no-dsa> (Minor issue)
 	NOTE: http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/private-key-not-wiped.html
 CVE-2013-4207 (Buffer overflow in sshbn.c in PuTTY before 0.63 allows remote SSH ...)
 	{DSA-2736-1}
 	- putty 0.63-1
-	- filezilla <unfixed> (low; bug #719070)
+	- filezilla 3.7.3-1 (low; bug #719070)
 	[squeeze] - filezilla <no-dsa> (Minor issue)
 	[wheezy] - filezilla <no-dsa> (Minor issue)
 	NOTE: http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-bignum-division-by-zero.html
 CVE-2013-4206 (Heap-based buffer underflow in the modmul function in sshbn.c in PuTTY ...)
 	{DSA-2736-1}
 	- putty 0.63-1
-	- filezilla <unfixed> (low; bug #719070)
+	- filezilla 3.7.3-1 (low; bug #719070)
 	[squeeze] - filezilla <no-dsa> (Minor issue)
 	[wheezy] - filezilla <no-dsa> (Minor issue)
 	NOTE: http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-modmul.html