[Secure-testing-commits] r26286 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Mar 27 15:12:24 UTC 2014 

Author: jmm
Date: 2014-03-27 15:12:24 +0000 (Thu, 27 Mar 2014)
New Revision: 26286

Modified:
   data/CVE/list
Log:
add mp3gain/mpg123 code copy
planet-venus no-dsa
fix postgresql 8.4 entry for wheezy


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-03-27 15:10:34 UTC (rev 26285)
+++ data/CVE/list	2014-03-27 15:12:24 UTC (rev 26286)
@@ -6833,42 +6833,49 @@
 	{DSA-2865-1 DSA-2864-1}
 	- postgresql-9.1 <removed>
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
 	- postgresql-9.3 9.3.3-1
 CVE-2014-0066
 	RESERVED
 	{DSA-2865-1 DSA-2864-1}
 	- postgresql-9.1 <removed>
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
 	- postgresql-9.3 9.3.3-1
 CVE-2014-0065
 	RESERVED
 	{DSA-2865-1 DSA-2864-1}
 	- postgresql-9.1 <removed>
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
 	- postgresql-9.3 9.3.3-1
 CVE-2014-0064
 	RESERVED
 	{DSA-2865-1 DSA-2864-1}
 	- postgresql-9.1 <removed>
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
 	- postgresql-9.3 9.3.3-1
 CVE-2014-0063
 	RESERVED
 	{DSA-2865-1 DSA-2864-1}
 	- postgresql-9.1 <removed>
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
 	- postgresql-9.3 9.3.3-1
 CVE-2014-0062
 	RESERVED
 	{DSA-2865-1 DSA-2864-1}
 	- postgresql-9.1 <removed>
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
 	- postgresql-9.3 9.3.3-1
 CVE-2014-0061
 	RESERVED
 	{DSA-2865-1 DSA-2864-1}
 	- postgresql-9.1 <removed>
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <no-dsa> (Minor issue)
 	- postgresql-9.3 9.3.3-1
 	- postgresql-plsh 1.20140221-1
 	[wheezy] - postgresql-plsh <no-dsa> (Minor issue)
@@ -6878,6 +6885,7 @@
 	{DSA-2865-1 DSA-2864-1}
 	- postgresql-9.1 <removed>
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
 	- postgresql-9.3 9.3.3-1
 CVE-2014-0059
 	RESERVED
@@ -53992,6 +54000,7 @@
 	[squeeze] - feedparser <no-dsa> (Minor issue)
 	[lenny] - feedparser <no-dsa> (Minor issue)
 	- planet-venus <unfixed> (low; bug #684246)
+	[wheezy] - planet-venus <no-dsa> (Minor issue)
 	[squeeze] - planet-venus <no-dsa> (Minor issue)
 	[lenny] - planet-venus <no-dsa> (Minor issue)
 	NOTE: https://code.google.com/p/feedparser/issues/detail?id=255
@@ -54000,6 +54009,7 @@
 	[squeeze] - feedparser <no-dsa> (Minor issue)
 	[lenny] - feedparser <no-dsa> (Minor issue)
 	- planet-venus <unfixed> (low; bug #684246)
+	[wheezy] - planet-venus <no-dsa> (Minor issue)
 	[squeeze] - planet-venus <no-dsa> (Minor issue)
 	[lenny] - planet-venus <no-dsa> (Minor issue)
 	NOTE: https://code.google.com/p/feedparser/issues/detail?id=254
@@ -54008,6 +54018,7 @@
 	[squeeze] - feedparser <no-dsa> (Minor issue)
 	[lenny] - feedparser <no-dsa> (Minor issue)
 	- planet-venus <unfixed> (low; bug #684246)
+	[wheezy] - planet-venus <no-dsa> (Minor issue)
 	[squeeze] - planet-venus <no-dsa> (Minor issue)
 	[lenny] - planet-venus <no-dsa> (Minor issue)
 	NOTE: https://code.google.com/p/feedparser/issues/detail?id=91
@@ -130453,6 +130464,9 @@
 CVE-2006-1655 (Multiple buffer overflows in mpg123 0.59r allow user-assisted ...)
 	{DSA-1074-1}
 	- mpg123 0.59r-22 (bug #361863)
+        - mp3gain 1.5.2-r2-6 (low)
+        [wheezy] - mp3gain <no-dsa> (Minor issue)
+        [squeeze] - mp3gain <no-dsa> (Minor issue)
 CVE-2006-1654 (Directory traversal vulnerability in the HP Color LaserJet 2500 ...)
 	NOT-FOR-US: HP Colour LaserJet 2500 and 4600 Toolbox
 CVE-2006-1653 (PHP remote file inclusion vulnerability in loadkernel.php in ...)
@@ -151293,6 +151307,9 @@
 	NOT-FOR-US: Proxytunnel
 CVE-2004-0991 (Buffer overflow in mpg123 before 0.59s-r9 allows remote attackers to ...)
 	- mpg123 0.59r-19
+        - mp3gain 1.5.2-r2-6 (low)
+        [wheezy] - mp3gain <no-dsa> (Minor issue)
+        [squeeze] - mp3gain <no-dsa> (Minor issue)
 CVE-2004-0990 (Integer overflow in GD Graphics Library libgd 2.0.28 (libgd2), and ...)
 	{DSA-602-1 DSA-601-1 DSA-591-1 DSA-589-1}
 	- libgd2 2.0.30-1
@@ -151776,6 +151793,9 @@
 CVE-2004-0805 (Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s ...)
 	{DSA-564-1}
 	- mpg123 0.59r-16
+        - mp3gain 1.5.2-r2-6 (low)
+        [wheezy] - mp3gain <no-dsa> (Minor issue)
+        [squeeze] - mp3gain <no-dsa> (Minor issue)
 CVE-2004-0804 (Vulnerability in tif_dirread.c for libtiff allows remote attackers to ...)
 	{DSA-567-1}
 	- kdegraphics 3.3.2-1
@@ -154541,6 +154561,9 @@
 	NOT-FOR-US: IBM U2 UniVerse
 CVE-2003-0577 (mpg123 0.59r allows remote attackers to cause a denial of service and ...)
 	- mpg123 0.59r-1
+        - mp3gain 1.5.2-r2-6 (low)
+        [wheezy] - mp3gain <no-dsa> (Minor issue)
+        [squeeze] - mp3gain <no-dsa> (Minor issue)
 CVE-2003-0576 (Unknown vulnerability in the NFS daemon (nfsd) in SGI IRIX 6.5.19f and ...)
 	NOT-FOR-US: IRIX
 CVE-2003-0575 (Heap-based buffer overflow in the name services daemon (nsd) in SGI ...)

More information about the Secure-testing-commits mailing list