[Secure-testing-commits] r28983 - in data: . CVE

Raphaël Hertzog hertzog at moszumanska.debian.org
Tue Sep 23 16:12:50 UTC 2014


Author: hertzog
Date: 2014-09-23 16:12:50 +0000 (Tue, 23 Sep 2014)
New Revision: 28983

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
CVE-2011-0433 and CVE-2011-5244 are already fixed in evince/squeeze

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-09-23 16:06:06 UTC (rev 28982)
+++ data/CVE/list	2014-09-23 16:12:50 UTC (rev 28983)
@@ -38827,6 +38827,7 @@
 CVE-2011-5244 (Multiple off-by-one errors in the (1) token and (2) linetoken ...)
 	{DSA-2357-1}
 	- evince 2.32.0-1
+	[squeeze] - evince 2.30.3-2+squeeze1
 	NOTE: This issue was already fixed in DSA-2357-1 by shipping the correct fix from the start
 CVE-2012-5884 (The User.get method in Bugzilla/WebService/User.pm in Bugzilla 4.3.2 ...)
 	- bugzilla <removed> (low)
@@ -67932,6 +67933,7 @@
 CVE-2011-0433 (Heap-based buffer overflow in the linetoken function in afmparse.c in ...)
 	{DSA-2388-1}
 	- evince 2.32.0-1 (bug #614668)
+	[squeeze] - evince 2.30.3-2+squeeze1
 	- vftool 2.0alpha-4.1 (low; bug #614669)
 	[squeeze] - vftool 2.0alpha-4+squeeze1
 	[lenny] - vftool 2.0alpha-3+lenny1

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2014-09-23 16:06:06 UTC (rev 28982)
+++ data/dla-needed.txt	2014-09-23 16:12:50 UTC (rev 28983)
@@ -25,8 +25,6 @@
 --
 eglibc
 --
-evince
---
 fckeditor
 --
 fex (non-free)




More information about the Secure-testing-commits mailing list