[Git][security-tracker-team/security-tracker][fix-old-DSA-entries] Add missing -1 for old DSA entries
Utkarsh Gupta (@utkarsh)
utkarsh at debian.org
Wed Jul 9 19:37:40 BST 2025
Utkarsh Gupta pushed to branch fix-old-DSA-entries at Debian Security Tracker / security-tracker
Commits:
399b89b1 by Utkarsh Gupta at 2025-07-10T00:07:10+05:30
Add missing -1 for old DSA entries
This also helps enahnce the consistency between the
DSA number reserved v/s the mailing list announcement.
Fixes: #28
- - - - -
1 changed file:
- data/DSA/list
Changes:
=====================================
data/DSA/list
=====================================
@@ -15882,7 +15882,7 @@
[13 Jun 2007] DSA-1305-1 icedove - several vulnerabilities
{CVE-2007-1558 CVE-2007-2867 CVE-2007-2868}
[etch] - icedove 1.5.0.12.dfsg1-0etch1
-[16 Jun 2007] DSA-1304 kernel-source-2.6.8 - several
+[16 Jun 2007] DSA-1304-1 kernel-source-2.6.8 - several
{CVE-2005-4811 CVE-2006-4814 CVE-2006-4623 CVE-2006-5753 CVE-2006-5754 CVE-2006-5757 CVE-2006-6053 CVE-2006-6056 CVE-2006-6060 CVE-2006-6106 CVE-2006-6535 CVE-2007-0958 CVE-2007-1357 CVE-2007-1592}
[sarge] - kernel-source-2.6.8 2.6.8-16sarge7
[10 Jun 2007] DSA-1303-1 lighttpd - denial of service
@@ -16027,7 +16027,7 @@
[16 Feb 2007] DSA-1261-1 postgresql
{CVE-2007-0555}
[sarge] - postgresql 7.4.7-6sarge4
-[14 Feb 2007] DSA-1260 imagemagick
+[14 Feb 2007] DSA-1260-1 imagemagick
{CVE-2007-0770}
[sarge] - imagemagick 6:6.0.6.2-2.9
[14 Feb 2007] DSA-1259-1 fetchmail
@@ -16036,7 +16036,7 @@
[07 Feb 2007] DSA-1258-1 mozilla-thunderbird
{CVE-2006-6497 CVE-2006-6498 CVE-2006-6499 CVE-2006-6501 CVE-2006-6502 CVE-2006-6503}
[sarge] - mozilla-thunderbird 1.0.2-2.sarge1.0.8e.2
-[05 Feb 2007] DSA-1257 samba
+[05 Feb 2007] DSA-1257-1 samba
{CVE-2007-0452 CVE-2007-0454}
[sarge] - samba 3.0.14a-3sarge4
[31 Jan 2007] DSA-1256-1 gtk+2.0
@@ -16097,7 +16097,7 @@
[17 Dec 2006] DSA-1238-1 clamav
{CVE-2006-6406 CVE-2006-6481}
[sarge] - clamav 0.84-2.sarge.13
-[17 Dec 2006] DSA-1237 kernel-source-2.4.27 - several
+[17 Dec 2006] DSA-1237-1 kernel-source-2.4.27 - several
{CVE-2006-4093 CVE-2006-4538 CVE-2006-4997 CVE-2006-5174 CVE-2006-5649 CVE-2006-5871}
[sarge] - kernel-source-2.6.8 2.6.8-16sarge6
[13 Dec 2006] DSA-1236-1 enemies-of-carlotta
@@ -16109,7 +16109,7 @@
[13 Dec 2006] DSA-1234-1 ruby1.6
{CVE-2006-5467}
[sarge] - ruby1.6 1.6.8-12sarge3
-[10 Dec 2006] DSA-1233 kernel-source-2.6.8 - several
+[10 Dec 2006] DSA-1233-1 kernel-source-2.6.8 - several
{CVE-2006-3741 CVE-2006-4538 CVE-2006-4813 CVE-2006-4997 CVE-2006-5174 CVE-2006-5619 CVE-2006-5649 CVE-2006-5751 CVE-2006-5871}
[sarge] - kernel-source-2.6.8 2.6.8-16sarge6
[09 Dec 2006] DSA-1232-1 clamav
@@ -16148,40 +16148,40 @@
[30 Nov 2006] DSA-1221-1 libgsf
{CVE-2006-4514}
[sarge] - libgsf 1.11.1-1sarge1
-[27 Nov 2006] DSA-1220 pstotext
+[27 Nov 2006] DSA-1220-1 pstotext
{CVE-2006-5869}
[sarge] - pstotext 1.9-1sarge2
-[27 Nov 2006] DSA-1219 texinfo
+[27 Nov 2006] DSA-1219-1 texinfo
{CVE-2005-3011 CVE-2006-4810}
[sarge] - texinfo 4.7-2.2sarge2
-[21 Nov 2006] DSA-1218 proftpd
+[21 Nov 2006] DSA-1218-1 proftpd
{CVE-2006-6171}
[sarge] - proftpd 1.2.10-15sarge2
-[20 Nov 2006] DSA-1217 linux-ftpd
+[20 Nov 2006] DSA-1217-1 linux-ftpd
{CVE-2006-5778 CVE-2006-6008}
[sarge] - linux-ftpd 0.17-20sarge2
-[20 Nov 2006] DSA-1216 flexbackup
+[20 Nov 2006] DSA-1216-1 flexbackup
{CVE-2005-4802}
[sarge] - flexbackup 1.2.1-2sarge1
-[20 Nov 2006] DSA-1215 xine-lib
+[20 Nov 2006] DSA-1215-1 xine-lib
{CVE-2006-4799 CVE-2006-4800}
[sarge] - xine-lib 1.0.1-1sarge4
-[20 Nov 2006] DSA-1214 gv
+[20 Nov 2006] DSA-1214-1 gv
{CVE-2006-5864}
[sarge] - gv 1:3.6.1-10sarge2
-[19 Nov 2006] DSA-1213 imagemagick
+[19 Nov 2006] DSA-1213-1 imagemagick
{CVE-2006-0082 CVE-2006-4144 CVE-2006-5456 CVE-2006-5868}
[sarge] - imagemagick 6:6.0.6.2-2.8
-[15 Nov 2006] DSA-1212 openssh
+[15 Nov 2006] DSA-1212-1 openssh
{CVE-2006-4924 CVE-2006-5051}
[sarge] - openssh 1:3.8.1p1-8.sarge.6
-[14 Nov 2006] DSA-1211 pdns
+[14 Nov 2006] DSA-1211-1 pdns
{CVE-2006-4251}
[sarge] - pdns 2.9.17-13sarge3
-[14 Nov 2006] DSA-1210 mozilla-firefox
+[14 Nov 2006] DSA-1210-1 mozilla-firefox
{CVE-2006-2788 CVE-2006-4340 CVE-2006-4565 CVE-2006-4566 CVE-2006-4568 CVE-2006-4571}
[sarge] - mozilla-firefox 1.0.4-2sarge12
-[12 Nov 2006] DSA-1209 trac
+[12 Nov 2006] DSA-1209-1 trac
{CVE-2006-5878}
[sarge] - trac 0.8.1-3sarge6
[11 Nov 2006] DSA-1208-1 bugzilla
@@ -16290,13 +16290,13 @@
[09 Sep 2006] DSA-1172-1 bind9 - programming error
{CVE-2006-4095 CVE-2006-4096}
[sarge] - bind9 1:9.2.4-1sarge1
-[07 Sep 2006] DSA-1171 ethereal - several
+[07 Sep 2006] DSA-1171-1 ethereal - several
{CVE-2006-4333 CVE-2005-3241 CVE-2005-3242 CVE-2005-3243 CVE-2005-3244 CVE-2005-3246 CVE-2005-3248 CVE-2005-3249}
[sarge] - ethereal 0.10.10-2sarge8
-[06 Sep 2006] DSA-1170 gcc-3.4 - missing sanity check
+[06 Sep 2006] DSA-1170-1 gcc-3.4 - missing sanity check
{CVE-2006-3619}
[sarge] - gcc-3.4 3.4.3-13sarge1
-[05 Sep 2006] DSA-1169 mysql-dfsg-4.1 - several
+[05 Sep 2006] DSA-1169-1 mysql-dfsg-4.1 - several
{CVE-2006-4226 CVE-2006-4380}
[sarge] - mysql-dfsg-4.1 4.1.11a-4sarge7
[04 Sep 2006] DSA-1168-1 imagemagick
@@ -16305,50 +16305,50 @@
[04 Sep 2006] DSA-1167-1 apache - missing input sanitising
{CVE-2005-3352 CVE-2006-3918}
[sarge] - apache 1.3.33-6sarge3
-[03 Sep 2006] DSA-1166 cheesetracker - buffer overflow
+[03 Sep 2006] DSA-1166-1 cheesetracker - buffer overflow
{CVE-2006-3814}
[sarge] - cheesetracker 0.9.9-1sarge1
-[01 Sep 2006] DSA-1165 capi4hylafax - missing input sanitising
+[01 Sep 2006] DSA-1165-1 capi4hylafax - missing input sanitising
{CVE-2006-3126}
[sarge] - capi4hylafax 1:01.02.03-10sarge2
-[31 Aug 2006] DSA-1164 sendmail - programming error
+[31 Aug 2006] DSA-1164-1 sendmail - programming error
{CVE-2006-4434}
[sarge] - sendmail 8.13.4-3sarge3
-[30 Aug 2006] DSA-1163 gtetrinet - programming error
+[30 Aug 2006] DSA-1163-1 gtetrinet - programming error
{CVE-2006-3125}
[sarge] - gtetrinet 0.7.8-1sarge2
-[30 Aug 2006] DSA-1162 libmusicbrainz-2.0 - buffer overflows
+[30 Aug 2006] DSA-1162-1 libmusicbrainz-2.0 - buffer overflows
{CVE-2006-4197}
[sarge] - libmusicbrainz-2.1 2.1.1-3sarge1
[sarge] - libmusicbrainz-2.0 2.0.2-10sarge1
-[29 Aug 2006] DSA-1161 mozilla-firefox - several vulnerabilities
+[29 Aug 2006] DSA-1161-1 mozilla-firefox - several vulnerabilities
{CVE-2006-3805 CVE-2006-3806 CVE-2006-3807 CVE-2006-3808 CVE-2006-3809 CVE-2006-3811}
[sarge] - mozilla-firefox 1.0.4-2sarge11
-[29 Aug 2006] DSA-1160 mozilla - several
+[29 Aug 2006] DSA-1160-1 mozilla - several
{CVE-2006-2779 CVE-2006-3805 CVE-2006-3806 CVE-2006-3807 CVE-2006-3808 CVE-2006-3809 CVE-2006-3811}
[sarge] - mozilla 2:1.7.8-1sarge7.2.2
-[28 Aug 2006] DSA-1159 mozilla-thunderbird - several
+[28 Aug 2006] DSA-1159-1 mozilla-thunderbird - several
{CVE-2006-2779 CVE-2006-3805 CVE-2006-3806 CVE-2006-3807 CVE-2006-3808 CVE-2006-3809 CVE-2006-3810 CVE-2006-3811}
[sarge] - mozilla-thunderbird 1.0.2-2.sarge1.0.8b.1
-[27 Aug 2006] DSA-1158 streamripper
+[27 Aug 2006] DSA-1158-1 streamripper
{CVE-2006-3124}
[sarge] - streamripper 1.61.7-1sarge1
-[27 Aug 2006] DSA-1157 ruby1.8
+[27 Aug 2006] DSA-1157-1 ruby1.8
{CVE-2006-3694 CVE-2006-1931}
[sarge] - ruby1.8 1.8.2-7sarge4
-[27 Aug 2006] DSA-1156 kdebase
+[27 Aug 2006] DSA-1156-1 kdebase
{CVE-2006-2449}
[sarge] - kdebase 4:3.3.2-1sarge3
-[24 Aug 2006] DSA-1155 sendmail - programming error
+[24 Aug 2006] DSA-1155-1 sendmail - programming error
{CVE-2006-1173}
[sarge] - sendmail 8.13.4-3sarge2
-[20 Aug 2006] DSA-1154 squirrelmail - variable overwriting
+[20 Aug 2006] DSA-1154-1 squirrelmail - variable overwriting
{CVE-2006-4019}
[sarge] - squirrelmail 2:1.4.4-9
-[18 Aug 2006] DSA-1153 clamav - buffer overflow
+[18 Aug 2006] DSA-1153-1 clamav - buffer overflow
{CVE-2006-4018}
[sarge] - clamav 0.84-2.sarge.10
-[18 Aug 2006] DSA-1152 trac - missing input sanitising
+[18 Aug 2006] DSA-1152-1 trac - missing input sanitising
{CVE-2006-3695}
[sarge] - trac 0.8.1-3sarge5
[15 Aug 2006] DSA-1151-1 heartbeat - out-of-bounds read
@@ -16417,98 +16417,98 @@
[30 Jul 2006] DSA-1130-1 sitebar - missing input validation
{CVE-2006-3320}
[sarge] - sitebar 3.2.6-7.1
-[28 Jul 2006] DSA-1129 osiris - format string
+[28 Jul 2006] DSA-1129-1 osiris - format string
{CVE-2006-3120}
[sarge] - osiris 4.0.6-1sarge1
-[28 Jul 2006] DSA-1128 heartbeat - permission error
+[28 Jul 2006] DSA-1128-1 heartbeat - permission error
{CVE-2006-3815}
[sarge] - heartbeat 1.2.3-9sarge5
-[28 Jul 2006] DSA-1127 ethereal - several
+[28 Jul 2006] DSA-1127-1 ethereal - several
{CVE-2006-3628 CVE-2006-3629 CVE-2006-3630 CVE-2006-3631 CVE-2006-3632}
[sarge] - ethereal 0.10.10-2sarge6
-[27 Jul 2006] DSA-1126 asterisk - several
+[27 Jul 2006] DSA-1126-1 asterisk - several
{CVE-2006-2898}
[sarge] - asterisk 1:1.0.7.dfsg.1-2sarge3
-[26 Jul 2006] DSA-1125 drupal - several
+[26 Jul 2006] DSA-1125-1 drupal - several
{CVE-2006-2742 CVE-2006-2743 CVE-2006-2831 CVE-2006-2832 CVE-2006-2833}
[sarge] - drupal 4.5.3-6.1sarge1
-[24 Jul 2006] DSA-1124 fbi - typo
+[24 Jul 2006] DSA-1124-1 fbi - typo
{CVE-2006-3119}
[sarge] - fbi 2.01-1.2sarge2
-[24 Jul 2006] DSA-1123 libdumb - buffer overflow
+[24 Jul 2006] DSA-1123-1 libdumb - buffer overflow
{CVE-2006-3668}
[sarge] - libdumb 1:0.9.2-6
-[24 Jul 2006] DSA-1122 libnet-server-perl - format string
+[24 Jul 2006] DSA-1122-1 libnet-server-perl - format string
{CVE-2005-1127}
[sarge] - libnet-server-perl 0.87-3sarge1
-[24 Jul 2006] DSA-1121 postgrey - format string
+[24 Jul 2006] DSA-1121-1 postgrey - format string
{CVE-2005-1127}
[sarge] - postgrey 1.21-1sarge1
NOTE: also fixed in 1.21-1volatile4
-[23 Jul 2006] DSA-1120 mozilla-firefox - several vulnerabilities
+[23 Jul 2006] DSA-1120-1 mozilla-firefox - several vulnerabilities
{CVE-2006-1942 CVE-2006-2775 CVE-2006-2776 CVE-2006-2777 CVE-2006-2778 CVE-2006-2779 CVE-2006-2780 CVE-2006-2782 CVE-2006-2783 CVE-2006-2784 CVE-2006-2785 CVE-2006-2786 CVE-2006-2787}
[sarge] - mozilla-firefox 1.0.4-2sarge9
-[23 Jul 2006] DSA-1119 hiki - design flaw
+[23 Jul 2006] DSA-1119-1 hiki - design flaw
{CVE-2006-3379}
[sarge] - hiki 0.6.5-2
-[22 Jul 2006] DSA-1118 mozilla - several
+[22 Jul 2006] DSA-1118-1 mozilla - several
{CVE-2006-1942 CVE-2006-2775 CVE-2006-2776 CVE-2006-2777 CVE-2006-2778 CVE-2006-2779 CVE-2006-2780 CVE-2006-2781 CVE-2006-2782 CVE-2006-2783 CVE-2006-2784 CVE-2006-2785 CVE-2006-2786 CVE-2006-2787}
[sarge] - mozilla 2:1.7.8-1sarge7.1
-[21 Jul 2006] DSA-1117 libgd2 - insufficient input sanitising
+[21 Jul 2006] DSA-1117-1 libgd2 - insufficient input sanitising
{CVE-2006-2906}
[sarge] - libgd2 2.0.33-1.1sarge1
-[21 Jul 2006] DSA-1116 gimp - buffer overflow
+[21 Jul 2006] DSA-1116-1 gimp - buffer overflow
{CVE-2006-3404}
[sarge] - gimp 2.2.6-1sarge1
-[21 Jul 2006] DSA-1115 gnupg2 - integer overflow
+[21 Jul 2006] DSA-1115-1 gnupg2 - integer overflow
{CVE-2006-3082}
[sarge] - gnupg 1.4.1-1.sarge4
[sarge] - gnupg2 1.9.15-6sarge1
-[21 Jul 2006] DSA-1114 hashcash - buffer overflow
+[21 Jul 2006] DSA-1114-1 hashcash - buffer overflow
{CVE-2006-3251}
[sarge] - hashcash 1.17-1sarge1
-[18 Jul 2006] DSA-1113 zope2.7 - programming error
+[18 Jul 2006] DSA-1113-1 zope2.7 - programming error
{CVE-2006-3458}
[sarge] - zope2.7 2.7.5-2sarge2
-[18 Jul 2006] DSA-1112 mysql-dfsg-4.1 - several vulnerabilities
+[18 Jul 2006] DSA-1112-1 mysql-dfsg-4.1 - several vulnerabilities
{CVE-2006-3081 CVE-2006-3469}
[sarge] - mysql-dfsg-4.1 4.1.11a-4sarge5
-[16 Jul 2006] DSA-1111 kernel-source-2.6.8 - race condition
+[16 Jul 2006] DSA-1111-1 kernel-source-2.6.8 - race condition
{CVE-2006-3626}
[sarge] - kernel-source-2.6.8 2.6.8-16sarge4
-[16 Jul 2006] DSA-1110 samba - missing input sanitising
+[16 Jul 2006] DSA-1110-1 samba - missing input sanitising
{CVE-2006-3403}
[sarge] - samba 3.0.14a-3sarge2
-[16 Jul 2006] DSA-1109 rssh - programming error
+[16 Jul 2006] DSA-1109-1 rssh - programming error
{CVE-2006-1320}
[sarge] - rssh 2.2.3-1.sarge.2
-[11 Jul 2006] DSA-1108 mutt - buffer overflow
+[11 Jul 2006] DSA-1108-1 mutt - buffer overflow
{CVE-2006-3242}
[sarge] - mutt 1.5.9-2sarge2
-[10 Jul 2006] DSA-1107 gnupg - integer overflow
+[10 Jul 2006] DSA-1107-1 gnupg - integer overflow
{CVE-2006-3082}
[sarge] - gnupg 1.4.1-1.sarge4
-[10 Jul 2006] DSA-1106 ppp - programming error
+[10 Jul 2006] DSA-1106-1 ppp - programming error
{CVE-2006-2194}
[sarge] - ppp 2.4.3-20050321+2sarge1
-[07 Jul 2006] DSA-1105 xine-lib - buffer overflow
+[07 Jul 2006] DSA-1105-1 xine-lib - buffer overflow
{CVE-2006-2802}
[woody] - xine-lib 0.9.8-2woody5
[sarge] - xine-lib 1.0.1-1sarge3
-[30 Jun 2006] DSA-1104 openoffice.org - several vulnerabilities
+[30 Jun 2006] DSA-1104-1 openoffice.org - several vulnerabilities
{CVE-2006-2198 CVE-2006-2199 CVE-2006-3117}
[sarge] - openoffice.org 1.1.3-9sarge3
-[27 Jun 2006] DSA-1103 kernel-source-2.6.8 - several vulnerabilities
+[27 Jun 2006] DSA-1103-1 kernel-source-2.6.8 - several vulnerabilities
{CVE-2005-3359 CVE-2006-0038 CVE-2006-0039 CVE-2006-0456 CVE-2006-0554 CVE-2006-0555 CVE-2006-0557 CVE-2006-0558 CVE-2006-0741 CVE-2006-0742 CVE-2006-0744 CVE-2006-1056 CVE-2006-1242 CVE-2006-1368 CVE-2006-1523 CVE-2006-1524 CVE-2006-1525 CVE-2006-1857 CVE-2006-1858 CVE-2006-1863 CVE-2006-1864 CVE-2006-2271 CVE-2006-2272 CVE-2006-2274}
[sarge] - kernel-source-2.6.8 2.6.8-16sarge3
-[26 Jun 2006] DSA-1102 pinball - design error
+[26 Jun 2006] DSA-1102-1 pinball - design error
{CVE-2006-2196}
[sarge] - pinball 0.3.1-3sarge1
-[23 Jun 2006] DSA-1101 courier - programming error
+[23 Jun 2006] DSA-1101-1 courier - programming error
{CVE-2006-2659}
[woody] - courier 0.37.3-2.9
[sarge] - courier 0.47-4sarge5
-[15 Jun 2006] DSA-1100 wv2 - integer overflow
+[15 Jun 2006] DSA-1100-1 wv2 - integer overflow
{CVE-2006-2197}
[sarge] - wv2 0.2.2-1sarge1
[14 Jun 2006] DSA-1099-1 - horde2 - missing input sanitising
@@ -18834,295 +18834,295 @@
[30 Aug 2004] DSA-542-1 qt - unsanitised input
{CVE-2004-0691 CVE-2004-0692 CVE-2004-0693}
[woody] - qt-copy 3.0.3-20020329-1woody2
-[25 Aug 2004] DSA-541 icecast-server - cross site scripting
+[25 Aug 2004] DSA-541-1 icecast-server - cross site scripting
{CVE-2004-0781}
[woody] - icecast-server 1:1.3.11-4.2
-[18 Aug 2004] DSA-540 mysql-dfsg - insecure file creation
+[18 Aug 2004] DSA-540-1 mysql-dfsg - insecure file creation
{CVE-2004-0457}
[woody] - mysql 3.23.49-8.7
-[18 Aug 2004] DSA-539 kdelibs - denial of service
+[18 Aug 2004] DSA-539-1 kdelibs - denial of service
{CVE-2004-0689}
[woody] - kdelibs 4:2.2.2-13.woody.12
-[17 Aug 2004] DSA-538 rsync - unauthorised directory traversal and file access
+[17 Aug 2004] DSA-538-1 rsync - unauthorised directory traversal and file access
{CVE-2004-0792}
[woody] - rsync 2.5.5-0.6
-[16 Aug 2004] DSA-537 ruby - insecure file permissions
+[16 Aug 2004] DSA-537-1 ruby - insecure file permissions
{CVE-2004-0755}
[woody] - ruby 1.6.7-3woody3
-[04 Aug 2004] DSA-536 libpng - several vulnerabilities
+[04 Aug 2004] DSA-536-1 libpng - several vulnerabilities
{CVE-2004-0597 CVE-2004-0598 CVE-2004-0599 CVE-2004-0768}
[woody] - libpng 1.0.12-3.woody.7
[woody] - libpng3 1.2.1-1.1.woody.7
-[02 Aug 2004] DSA-535 squirrelmail - several vulnerabilities
+[02 Aug 2004] DSA-535-1 squirrelmail - several vulnerabilities
{CVE-2004-0519 CVE-2004-0520 CVE-2004-0521 CVE-2004-0639}
[woody] - squirrelmail 1:1.2.6-1.4
-[22 Jul 2004] DSA-534 mailreader - directory traversal
+[22 Jul 2004] DSA-534-1 mailreader - directory traversal
{CVE-2002-1581}
[woody] - mailreader 2.3.29-5woody1
-[22 Jul 2004] DSA-533 courier - cross-site scripting
+[22 Jul 2004] DSA-533-1 courier - cross-site scripting
{CVE-2004-0591}
[woody] - courier 0.37.3-2.5
-[22 Jul 2004] DSA-532 libapache-mod-ssl - several vulnerabilities
+[22 Jul 2004] DSA-532-1 libapache-mod-ssl - several vulnerabilities
{CVE-2004-0488 CVE-2004-0700}
[woody] - libapache-mod-ssl 2.8.9-2.4
-[20 Jul 2004] DSA-531 php4 - several vulnerabilities
+[20 Jul 2004] DSA-531-1 php4 - several vulnerabilities
{CVE-2004-0594 CVE-2004-0595}
[woody] - php4 4.1.2-7
-[17 Jul 2004] DSA-530 l2tpd - buffer overflow
+[17 Jul 2004] DSA-530-1 l2tpd - buffer overflow
{CVE-2004-0649}
[woody] - l2tpd 0.67-1.2
-[17 Jul 2004] DSA-529 netkit-telnet-ssl - format string
+[17 Jul 2004] DSA-529-1 netkit-telnet-ssl - format string
{CVE-2004-0640}
[woody] - netkit-telnet-ssl 0.17.17+0.1-2woody1
-[17 Jul 2004] DSA-528 ethereal - denial of service
+[17 Jul 2004] DSA-528-1 ethereal - denial of service
{CVE-2004-0635}
[woody] - ethereal 0.9.4-1woody8
-[03 Jul 2004] DSA-527 pavuk - buffer overflow
+[03 Jul 2004] DSA-527-1 pavuk - buffer overflow
{CVE-2004-0456}
NOTE: DSA is incorrect; pavuk is in sarge and unstable.
[woody] - pavuk 0.9pl28-1woody1
-[03 Jul 2004] DSA-526 webmin - several vulnerabilities
+[03 Jul 2004] DSA-526-1 webmin - several vulnerabilities
{CVE-2004-0582 CVE-2004-0583}
[woody] - webmin 0.94-7woody2
-[24 Jun 2004] DSA-525 apache - buffer overflow
+[24 Jun 2004] DSA-525-1 apache - buffer overflow
{CVE-2004-0492}
[woody] - apache 1.3.26-0woody5
-[19 Jun 2004] DSA-524 rlpr - several vulnerabilities
+[19 Jun 2004] DSA-524-1 rlpr - several vulnerabilities
{CVE-2004-0393 CVE-2004-0454}
[woody] - rlpr 2.02-7woody1
-[19 Jun 2004] DSA-523 www-sql - buffer overflow
+[19 Jun 2004] DSA-523-1 www-sql - buffer overflow
{CVE-2004-0455}
[woody] - www-sql 0.5.7-17woody1
-[19 Jun 2004] DSA-522 super - format string vulnerability
+[19 Jun 2004] DSA-522-1 super - format string vulnerability
{CVE-2004-0579}
[woody] - super 3.16.1-1.2
-[18 Jun 2004] DSA-521 sup - format string vulnerability
+[18 Jun 2004] DSA-521-1 sup - format string vulnerability
{CVE-2004-0451}
[woody] - sup 1.8-8woody2
-[16 Jun 2004] DSA-520 krb5 - buffer overflows
+[16 Jun 2004] DSA-520-1 krb5 - buffer overflows
{CVE-2004-0523}
[woody] - krb5 1.2.4-5woody5
-[15 Jun 2004] DSA-519 cvs - several vulnerabilities
+[15 Jun 2004] DSA-519-1 cvs - several vulnerabilities
{CVE-2004-0416 CVE-2004-0417 CVE-2004-0418}
[woody] - cvs 1.11.1p1debian-9woody7
-[14 Jun 2004] DSA-518 kdelibs - unsanitised input
+[14 Jun 2004] DSA-518-1 kdelibs - unsanitised input
{CVE-2004-0411}
[woody] - kdelibs 4:2.2.2-13.woody.10
-[10 Jun 2004] DSA-517 cvs - buffer overflow
+[10 Jun 2004] DSA-517-1 cvs - buffer overflow
{CVE-2004-0414}
[woody] - cvs 1.11.1p1debian-9woody6
-[07 Jun 2004] DSA-516 postgresql - buffer overflow
+[07 Jun 2004] DSA-516-1 postgresql - buffer overflow
{CVE-2004-0547}
[woody] - postgresql 7.2.1-2woody5
-[05 Jun 2004] DSA-515 lha - several vulnerabilities
+[05 Jun 2004] DSA-515-1 lha - several vulnerabilities
{CVE-2004-0234 CVE-2004-0235}
[woody] - lha 1.14i-2woody1
-[04 Jun 2004] DSA-514 kernel-image-sparc-2.2 - failing function and TLB flush
+[04 Jun 2004] DSA-514-1 kernel-image-sparc-2.2 - failing function and TLB flush
{CVE-2004-0077}
[woody] - kernel-source-2.2.20 2.2.20-5woody3
-[03 Jun 2004] DSA-513 log2mail - format string
+[03 Jun 2004] DSA-513-1 log2mail - format string
{CVE-2004-0450}
[woody] - log2mail 0.2.5.2
-[02 Jun 2004] DSA-512 gallery - unauthenticated access
+[02 Jun 2004] DSA-512-1 gallery - unauthenticated access
{CVE-2004-0522}
[woody] - gallery 1.2.5-8woody2
-[30 May 2004] DSA-511 ethereal - buffer overflows
+[30 May 2004] DSA-511-1 ethereal - buffer overflows
{CVE-2004-0176}
[woody] - ethereal 0.9.4-1woody7
-[29 May 2004] DSA-510 jftpgw - format string
+[29 May 2004] DSA-510-1 jftpgw - format string
{CVE-2004-0448}
[woody] - jftpgw 0.13.1-1woody1
-[29 May 2004] DSA-509 gatos - privilege escalation
+[29 May 2004] DSA-509-1 gatos - privilege escalation
{CVE-2004-0395}
[woody] - gatos 0.0.5-6woody1
-[22 May 2004] DSA-508 xpcd - buffer overflow
+[22 May 2004] DSA-508-1 xpcd - buffer overflow
{CVE-2004-0402}
[woody] - xpcd 2.08-8woody2
-[19 May 2004] DSA-507 cadaver - buffer overflow
+[19 May 2004] DSA-507-1 cadaver - buffer overflow
{CVE-2004-0398}
[woody] - cadaver 0.18.0-1woody3
-[19 May 2004] DSA-506 neon - buffer overflow
+[19 May 2004] DSA-506-1 neon - buffer overflow
{CVE-2004-0398}
[woody] - neon 0.19.3-2woody5
-[19 May 2004] DSA-505 cvs - heap overflow
+[19 May 2004] DSA-505-1 cvs - heap overflow
{CVE-2004-0396}
[woody] - cvs 1.11.1p1debian-9woody4
-[18 May 2004] DSA-504 heimdal - missing input sanitising
+[18 May 2004] DSA-504-1 heimdal - missing input sanitising
{CVE-2004-0434}
[woody] - heimdal 0.4e-7.woody.9
-[13 May 2004] DSA-503 mah-jong - missing argument check
+[13 May 2004] DSA-503-1 mah-jong - missing argument check
{CVE-2004-0458}
[woody] - mah-jong 1.4-3
-[11 May 2004] DSA-502 exim-tls - buffer overflow
+[11 May 2004] DSA-502-1 exim-tls - buffer overflow
{CVE-2004-0399 CVE-2004-0400}
[woody] - exim-tls 3.35-3woody2
-[07 May 2004] DSA-501 exim - buffer overflow
+[07 May 2004] DSA-501-1 exim - buffer overflow
{CVE-2004-0399 CVE-2004-0400}
[woody] - exim 3.35-1woody3
-[01 May 2004] DSA-500 flim - insecure temporary file
+[01 May 2004] DSA-500-1 flim - insecure temporary file
{CVE-2004-0422}
[woody] - flim 1.14.3-9woody1
-[01 May 2004] DSA-499 rsync - directory traversal
+[01 May 2004] DSA-499-1 rsync - directory traversal
{CVE-2004-0426}
[woody] - rsync 2.5.5-0.5
-[30 Apr 2004] DSA-498 libpng - out of bound access
+[30 Apr 2004] DSA-498-1 libpng - out of bound access
{CVE-2004-0421}
[woody] - libpng 1.0.12-3.woody.5
[woody] - libpng3 1.2.1-1.1.woody.5
-[29 Apr 2004] DSA-497 mc - several vulnerabilities
+[29 Apr 2004] DSA-497-1 mc - several vulnerabilities
{CVE-2004-0226 CVE-2004-0231 CVE-2004-0232}
[woody] - mc 4.5.55-1.2woody3
-[29 Apr 2004] DSA-496 eterm - missing input sanitising
+[29 Apr 2004] DSA-496-1 eterm - missing input sanitising
{CVE-2003-0068}
[woody] - eterm 0.9.2-0pre2002042903.3
-[26 Apr 2004] DSA-495 linux-kernel-2.4.16-arm - several vulnerabilities
+[26 Apr 2004] DSA-495-1 linux-kernel-2.4.16-arm - several vulnerabilities
{CVE-2003-0127 CVE-2004-0003 CVE-2004-0010 CVE-2004-0109 CVE-2004-0177 CVE-2004-0178}
[woody] - kernel-source-2.4.16 2.4.16-1woody2
[woody] - kernel-patch-2.4.16-arm 20040419
[woody] - kernel-image-2.4.16-lart 20040419
[woody] - kernel-image-2.4.16-netwinder 20040419
[woody] - kernel-image-2.4.16-riscpc 20040419
-[21 Apr 2004] DSA-494 ident2 - buffer overflow
+[21 Apr 2004] DSA-494-1 ident2 - buffer overflow
{CVE-2004-0408}
[woody] - ident2 1.03-3woody1
-[21 Apr 2004] DSA-493 xchat - buffer overflow
+[21 Apr 2004] DSA-493-1 xchat - buffer overflow
{CVE-2004-0409}
[woody] - xchat 1.8.9-0woody3
-[18 Apr 2004] DSA-492 iproute - denial of service
+[18 Apr 2004] DSA-492-1 iproute - denial of service
{CVE-2003-0856}
[woody] - iproute 20010824-8woody1
-[17 Apr 2004] DSA-491 linux-kernel-2.4.19-mips - several vulnerabilities
+[17 Apr 2004] DSA-491-1 linux-kernel-2.4.19-mips - several vulnerabilities
{CVE-2004-0003 CVE-2004-0010 CVE-2004-0109 CVE-2004-0177 CVE-2004-0178}
[woody] - kernel-source-2.4.19 2.4.19-4.woody2
[woody] - kernel-patch-2.4.19-mips 2.4.19-0.020911.1.woody4
-[17 Apr 2004] DSA-490 zope - arbitrary code execution
+[17 Apr 2004] DSA-490-1 zope - arbitrary code execution
{CVE-2002-0688}
[woody] - zope 2.5.1-1woody1
-[17 Apr 2004] DSA-489 linux-kernel-2.4.17-mips+mipsel - several vulnerabilities
+[17 Apr 2004] DSA-489-1 linux-kernel-2.4.17-mips+mipsel - several vulnerabilities
{CVE-2004-0003 CVE-2004-0010 CVE-2004-0109 CVE-2004-0177 CVE-2004-0178}
[woody] - kernel-source-2.4.17 2.4.17-1woody3
[woody] - kernel-patch-2.4.17-mips 2.4.17-0.020226.2.woody6
[woody] - kernel-patch-2.4.17-mipsel 2.4.17-0.020226.2.woody6
-[16 Apr 2004] DSA-488 logcheck - insecure temporary directory
+[16 Apr 2004] DSA-488-1 logcheck - insecure temporary directory
{CVE-2004-0404}
[woody] - logcheck 1.1.1-13.1woody1
-[16 Apr 2004] DSA-487 neon - format string
+[16 Apr 2004] DSA-487-1 neon - format string
{CVE-2004-0179}
[woody] - neon 0.19.3-2woody3
-[16 Apr 2004] DSA-486 cvs - several vulnerabilities
+[16 Apr 2004] DSA-486-1 cvs - several vulnerabilities
{CVE-2004-0180 CVE-2004-0405}
[woody] - cvs 1.11.1p1debian-9woody2
-[14 Apr 2004] DSA-485 ssmtp - format string
+[14 Apr 2004] DSA-485-1 ssmtp - format string
{CVE-2004-0156}
[woody] - ssmtp 2.50.6.1
-[14 Apr 2004] DSA-484 xonix - failure to drop privileges
+[14 Apr 2004] DSA-484-1 xonix - failure to drop privileges
{CVE-2004-0157}
[woody] - xonix 1.4-19woody1
-[14 Apr 2004] DSA-483 mysql - insecure temporary file creation
+[14 Apr 2004] DSA-483-1 mysql - insecure temporary file creation
{CVE-2004-0381 CVE-2004-0388}
[woody] - mysql 3.23.49-8.6
-[14 Apr 2004] DSA-482 linux-kernel-2.4.17-apus+s390 - several vulnerabilities
+[14 Apr 2004] DSA-482-1 linux-kernel-2.4.17-apus+s390 - several vulnerabilities
{CVE-2004-0003 CVE-2004-0010 CVE-2004-0109 CVE-2004-0177 CVE-2004-0178}
[woody] - kernel-source-2.4.17 2.4.17-1woody3
[woody] - kernel-patch-2.4.17-apus 2.4.17-5
[woody] - kernel-patch-2.4.17-s390 2.4.17-2.woody.4
[woody] - kernel-image-2.4.17-s390 2.4.17-2.woody.4
-[14 Apr 2004] DSA-481 linux-kernel-2.4.17-ia64 - several vulnerabilities
+[14 Apr 2004] DSA-481-1 linux-kernel-2.4.17-ia64 - several vulnerabilities
{CVE-2004-0003 CVE-2004-0010 CVE-2004-0109 CVE-2004-0177 CVE-2004-0178}
[woody] - kernel-image-2.4.17-ia64 011226.17
-[14 Apr 2004] DSA-480 linux-kernel-2.4.17+2.4.18-hppa - several vulnerabilities
+[14 Apr 2004] DSA-480-1 linux-kernel-2.4.17+2.4.18-hppa - several vulnerabilities
{CVE-2004-0003 CVE-2004-0010 CVE-2004-0109 CVE-2004-0177 CVE-2004-0178}
[woody] - kernel-image-2.4.17-hppa 32.4
[woody] - kernel-image-2.4.18-hppa 62.3
-[14 Apr 2004] DSA-479 linux-kernel-2.4.18-alpha+i386+powerpc - several vulnerabilities
+[14 Apr 2004] DSA-479-1 linux-kernel-2.4.18-alpha+i386+powerpc - several vulnerabilities
{CVE-2004-0003 CVE-2004-0010 CVE-2004-0109 CVE-2004-0177 CVE-2004-0178}
[woody] - kernel-source-2.4.18 2.4.18-14.3
[woody] - kernel-image-2.4.18-1-alpha 2.4.18-15
[woody] - kernel-image-2.4.18-1-i386 2.4.18-13
[woody] - kernel-image-2.4.18-i386bf 2.4.18-5woody8
[woody] - kernel-patch-2.4.18-powerpc 2.4.18-1woody5
-[06 Apr 2004] DSA-478 tcpdump - denial of service
+[06 Apr 2004] DSA-478-1 tcpdump - denial of service
{CVE-2004-0183 CVE-2004-0184}
[woody] - tcpdump 3.6.2-2.8
-[06 Apr 2004] DSA-477 xine-ui - insecure temporary file creation
+[06 Apr 2004] DSA-477-1 xine-ui - insecure temporary file creation
{CVE-2004-0372}
[woody] - xine-ui 0.9.8-5
-[06 Apr 2004] DSA-476 heimdal - cross-realm
+[06 Apr 2004] DSA-476-1 heimdal - cross-realm
{CVE-2004-0371}
[woody] - heimdal 0.4e-7.woody.8.1
-[05 Apr 2004] DSA-475 linux-kernel-2.4.18-hppa - several vulnerabilities
+[05 Apr 2004] DSA-475-1 linux-kernel-2.4.18-hppa - several vulnerabilities
{CVE-2003-0961 CVE-2003-0985 CVE-2004-0077}
[woody] - kernel-image-2.4.18-hppa 62.1
-[03 Apr 2004] DSA-474 squid - ACL bypass
+[03 Apr 2004] DSA-474-1 squid - ACL bypass
{CVE-2004-0189}
[woody] - squid 2.4.6-2woody2
-[03 Apr 2004] DSA-473 oftpd - denial of service
+[03 Apr 2004] DSA-473-1 oftpd - denial of service
{CVE-2004-0376}
[woody] - oftpd 0.3.6-6
-[03 Apr 2004] DSA-472 fte - several vulnerabilities
+[03 Apr 2004] DSA-472-1 fte - several vulnerabilities
{CVE-2003-0648}
[woody] - fte 0.49.13-15woody1
-[02 Apr 2004] DSA-471 interchange - missing input sanitising
+[02 Apr 2004] DSA-471-1 interchange - missing input sanitising
{CVE-2004-0374}
[woody] - interchange 4.8.3.20020306-1.woody.2
-[01 Apr 2004] DSA-470 linux-kernel-2.4.17-hppa - several vulnerabilities
+[01 Apr 2004] DSA-470-1 linux-kernel-2.4.17-hppa - several vulnerabilities
{CVE-2003-0961 CVE-2003-0985 CVE-2004-0077}
[woody] - kernel-image-2.4.17-hppa 32.3
-[29 Mar 2004] DSA-469 pam-pgsql - missing input sanitising
+[29 Mar 2004] DSA-469-1 pam-pgsql - missing input sanitising
{CVE-2004-0366}
[woody] - pam-pgsql 0.5.2-3woody2
-[24 Mar 2004] DSA-468 emil - several vulnerabilities
+[24 Mar 2004] DSA-468-1 emil - several vulnerabilities
{CVE-2004-0152 CVE-2004-0153}
[woody] - emil 2.1.0-beta9-11woody1
-[23 Mar 2004] DSA-467 ecartis - several vulnerabilities
+[23 Mar 2004] DSA-467-1 ecartis - several vulnerabilities
{CVE-2003-0781 CVE-2003-0782}
[woody] - ecartis 0.129a+1.0.0-snap20020514-1.2
-[18 Mar 2004] DSA-466 linux-kernel-2.2.10-powerpc-apus - failing function and TLB flush
+[18 Mar 2004] DSA-466-1 linux-kernel-2.2.10-powerpc-apus - failing function and TLB flush
{CVE-2004-0077}
[woody] - kernel-source-2.2.10 2.2.10-2
[woody] - kernel-image-2.2.10-powerpc-apus 2.2.10-13woody1
-[17 Mar 2004] DSA-465 openssl - several vulnerabilities
+[17 Mar 2004] DSA-465-1 openssl - several vulnerabilities
{CVE-2004-0079 CVE-2004-0081}
[woody] - openssl 0.9.6c-2.woody.6
[woody] - openssl094 0.9.4-6.woody.4
[woody] - openssl095 0.9.5a-6.woody.5
-[16 Mar 2004] DSA-464 gdk-pixbuf - broken image handling
+[16 Mar 2004] DSA-464-1 gdk-pixbuf - broken image handling
{CVE-2004-0111}
[woody] - gdk-pixbuf 0.17.0-2woody1
-[12 Mar 2004] DSA-463 samba - privilege escalation
+[12 Mar 2004] DSA-463-1 samba - privilege escalation
{CVE-2004-0186}
[woody] - samba 2.2.3a-13
-[12 Mar 2004] DSA-462 xitalk - missing privilege release
+[12 Mar 2004] DSA-462-1 xitalk - missing privilege release
{CVE-2004-0151}
[woody] - xitalk 1.1.11-9.1woody1
-[11 Mar 2004] DSA-461 calife - buffer overflow
+[11 Mar 2004] DSA-461-1 calife - buffer overflow
{CVE-2004-0188}
[woody] - calife 2.8.4c-1woody1
-[10 Mar 2004] DSA-460 sysstat - insecure temporary file
+[10 Mar 2004] DSA-460-1 sysstat - insecure temporary file
{CVE-2004-0108}
[woody] - sysstat 5.0.1-1
-[10 Mar 2004] DSA-459 kdelibs - cookie path traversal
+[10 Mar 2004] DSA-459-1 kdelibs - cookie path traversal
{CVE-2003-0592}
[woody] - kdelibs 4:2.2.2-6woody3
[woody] - kdelibs-crypto 4:2.2.2-13.woody.9
-[08 Mar 2004] DSA-457 wu-ftpd - several vulnerabilities
+[08 Mar 2004] DSA-457-1 wu-ftpd - several vulnerabilities
{CVE-2004-0148 CVE-2004-0185}
[woody] - wu-ftpd 2.6.2-3woody4
-[06 Mar 2004] DSA-456 linux-kernel-2.2.19-arm - failing function and TLB flush
+[06 Mar 2004] DSA-456-1 linux-kernel-2.2.19-arm - failing function and TLB flush
{CVE-2004-0077}
[woody] - kernel-source-2.2.19 2.2.19.1-4woody1
[woody] - kernel-patch-2.2.19-arm 20040303
[woody] - kernel-image-2.2.19-netwinder 20040303
[woody] - kernel-image-2.2.19-riscpc 20040303
-[03 Mar 2004] DSA-455 libxml - buffer overflows
+[03 Mar 2004] DSA-455-1 libxml - buffer overflows
{CVE-2004-0110}
[woody] - libxml 1.8.17-2woody1
[woody] - libxml2 2.4.19-4woody1
-[02 Mar 2004] DSA-454 linux-kernel-2.2.22-alpha - failing function and TLB flush
+[02 Mar 2004] DSA-454-1 linux-kernel-2.2.22-alpha - failing function and TLB flush
{CVE-2004-0077}
[woody] - kernel-source-2.2.22 2.2.22-1woody1
[woody] - kernel-image-2.2.22-alpha 2.2.22-2
-[02 Mar 2004] DSA-453 linux-kernel-2.2.20-i386+m68k+powerpc - failing function and TLB flush
+[02 Mar 2004] DSA-453-1 linux-kernel-2.2.20-i386+m68k+powerpc - failing function and TLB flush
{CVE-2004-0077}
[woody] - kernel-source-2.2.20 2.2.20-5woody3
[woody] - kernel-image-2.2.20-i386 2.2.20-5woody5
@@ -19134,995 +19134,998 @@
[woody] - kernel-image-2.2.20-mvme147 2.2.20-3
[woody] - kernel-image-2.2.20-mvme16x 2.2.20-3
[woody] - kernel-patch-2.2.20-powerpc 2.2.20-3woody1
-[29 Feb 2004] DSA-452 libapache-mod-python - denial of service
+[29 Feb 2004] DSA-452-1 libapache-mod-python - denial of service
{CVE-2003-0973}
[woody] - libapache-mod-python 2:2.7.8-0.0woody2
-[27 Feb 2004] DSA-451 xboing - buffer overflows
+[27 Feb 2004] DSA-451-1 xboing - buffer overflows
{CVE-2004-0149}
[woody] - xboing 2.4-26woody1
-[27 Feb 2004] DSA-450 linux-kernel-2.4.19-mips - several vulnerabilities
+[27 Feb 2004] DSA-450-1 linux-kernel-2.4.19-mips - several vulnerabilities
{CVE-2003-0961 CVE-2003-0985 CVE-2004-0077}
[woody] - kernel-source-2.4.19 2.4.19-0.020911.1.woody3
[woody] - kernel-patch-2.4.19-mips 2.4.19-4.woody1
-[24 Feb 2004] DSA-449 metamail - buffer overflow, format string bugs
+[24 Feb 2004] DSA-449-1 metamail - buffer overflow, format string bugs
{CVE-2004-0104 CVE-2004-0105}
[woody] - metamail 2.7-45woody.2
-[22 Feb 2004] DSA-448 pwlib - several vulnerabilities
+[22 Feb 2004] DSA-448-1 pwlib - several vulnerabilities
{CVE-2004-0097}
[woody] - pwlib 1.2.5-5woody1
-[22 Feb 2004] DSA-447 hsftp - format string
+[22 Feb 2004] DSA-447-1 hsftp - format string
{CVE-2004-0159}
[woody] - hsftp 1.11-1woody1
-[21 Feb 2004] DSA-446 synaesthesia - insecure file creation
+[21 Feb 2004] DSA-446-1 synaesthesia - insecure file creation
{CVE-2004-0160}
[woody] - synaesthesia 2.1-2.1woody1
-[21 Feb 2004] DSA-445 lbreakout2 - buffer overflow
+[21 Feb 2004] DSA-445-1 lbreakout2 - buffer overflow
{CVE-2004-0158}
[woody] - lbreakout2 2.2.2-1woody1
-[20 Feb 2004] DSA-444 linux-kernel-2.4.17-ia64 - missing function return value check
+[20 Feb 2004] DSA-444-1 linux-kernel-2.4.17-ia64 - missing function return value check
{CVE-2004-0077}
[woody] - kernel-image-2.4.17-ia64 011226.16
-[19 Feb 2004] DSA-443 xfree86 - several vulnerabilities
+[19 Feb 2004] DSA-443-1 xfree86 - several vulnerabilities
{CVE-2003-0690 CVE-2004-0083 CVE-2004-0084 CVE-2004-0106 CVE-2004-0093 CVE-2004-0094}
[woody] - xfree86 4.1.0-16woody3
-[19 Feb 2004] DSA-442 linux-kernel-2.4.17-s390 - several vulnerabilities
+[19 Feb 2004] DSA-442-1 linux-kernel-2.4.17-s390 - several vulnerabilities
{CVE-2003-0001 CVE-2003-0244 CVE-2003-0246 CVE-2003-0247 CVE-2003-0248 CVE-2003-0364 CVE-2003-0961 CVE-2003-0985 CVE-2004-0077 CVE-2002-0429}
[woody] - kernel-patch-2.4.17-s390 0.0.20020816-0.woody.2
[woody] - kernel-image-2.4.17-s390 2.4.17-2.woody.3
-[18 Feb 2004] DSA-441 linux-kernel-2.4.17-mips+mipsel - missing function return value check
+[18 Feb 2004] DSA-441-1 linux-kernel-2.4.17-mips+mipsel - missing function return value check
{CVE-2004-0077}
[woody] - kernel-patch-2.4.17-mips 2.4.17-0.020226.2.woody5
-[18 Feb 2004] DSA-440 linux-kernel-2.4.17-powerpc-apus - several vulnerabilities
+[18 Feb 2004] DSA-440-1 linux-kernel-2.4.17-powerpc-apus - several vulnerabilities
{CVE-2003-0961 CVE-2003-0985 CVE-2004-0077}
[woody] - kernel-source-2.4.17 2.4.17-4
[woody] - kernel-patch-2.4.17-apus 2.4.17-4
-[18 Feb 2004] DSA-439 linux-kernel-2.4.16-arm - several vulnerabilities
+[18 Feb 2004] DSA-439-1 linux-kernel-2.4.16-arm - several vulnerabilities
{CVE-2003-0961 CVE-2003-0985 CVE-2004-0077}
[woody] - kernel-image-2.4.16-lart 2.4.16-20040204
[woody] - kernel-image-2.4.16-netwinder 2.4.16-20040204
[woody] - kernel-image-2.4.16-riscpc 2.4.16-20040204
[woody] - kernel-patch-2.4.16-arm 20040204
-[18 Feb 2004] DSA-438 linux-kernel-2.4.18-alpha+i386+powerpc - missing function return value check
+[18 Feb 2004] DSA-438-1 linux-kernel-2.4.18-alpha+i386+powerpc - missing function return value check
{CVE-2004-0077}
[woody] - kernel-source-2.4.18 2.4.18-14.2
[woody] - kernel-image-2.4.18-1-alpha 2.4.18-14
[woody] - kernel-image-2.4.18-1-i386 2.4.18-12.2
[woody] - kernel-image-2.4.18-i386bf 2.4.18-5woody7
[woody] - kernel-patch-2.4.18-powerpc 2.4.18-1woody4
-[11 Feb 2004] DSA-437 cgiemail - open mail relay
+[11 Feb 2004] DSA-437-1 cgiemail - open mail relay
{CVE-2002-1575}
[woody] - cgiemail 1.6-14woody1
-[08 Feb 2004] DSA-436 mailman - several vulnerabilities
+[08 Feb 2004] DSA-436-1 mailman - several vulnerabilities
{CVE-2003-0991 CVE-2003-0965 CVE-2003-0038}
[woody] - mailman 2.0.11-1woody7
-[06 Feb 2004] DSA-435 mpg123 - heap overflow
+[06 Feb 2004] DSA-435-1 mpg123 - heap overflow
{CVE-2003-0865}
[woody] - mpg123 0.59r-13woody2
-[05 Feb 2004] DSA-434 gaim - several vulnerabilities
+[05 Feb 2004] DSA-434-1 gaim - several vulnerabilities
{CVE-2004-0005 CVE-2004-0006 CVE-2004-0007 CVE-2004-0008}
[woody] - gaim 0.58-2.4
-[04 Feb 2004] DSA-433 kernel-patch-2.4.17-mips - integer overflow
+[04 Feb 2004] DSA-433-1 kernel-patch-2.4.17-mips - integer overflow
{CVE-2003-0961}
[woody] - kernel-patch-2.4.17-mips 2.4.17-0.020226.2.woody4
-[03 Feb 2004] DSA-432 crawl - buffer overflow
+[03 Feb 2004] DSA-432-1 crawl - buffer overflow
{CVE-2004-0103}
[woody] - crawl 4.0.0beta23-2woody1
-[01 Feb 2004] DSA-431 perl - information leak
+[01 Feb 2004] DSA-431-1 perl - information leak
{CVE-2003-0618}
[woody] - perl 5.6.1-8.6
-[28 Jan 2004] DSA-430 trr19 - missing privilege release
+[28 Jan 2004] DSA-430-1 trr19 - missing privilege release
{CVE-2004-0047}
[woody] - trr19 1.0beta5-15woody1
-[26 Jan 2004] DSA-429 gnupg - cryptographic weakness
+[26 Jan 2004] DSA-429-1 gnupg - cryptographic weakness
{CVE-2003-0971}
[woody] - gnupg 1.0.6-4woody1
-[20 Jan 2004] DSA-428 slocate - buffer overflow
+[20 Jan 2004] DSA-428-1 slocate - buffer overflow
{CVE-2003-0848}
[woody] - slocate 2.6-1.3.2
-[19 Jan 2004] DSA-427 linux-kernel-2.4.17-mips+mipsel - missing boundary check
+[19 Jan 2004] DSA-427-1 linux-kernel-2.4.17-mips+mipsel - missing boundary check
{CVE-2003-0985}
[woody] - kernel-patch-2.4.17-mips 2.4.17-0.020226.2.woody3
-[18 Jan 2004] DSA-426 netpbm-free - insecure temporary files
+[18 Jan 2004] DSA-426-1 netpbm-free - insecure temporary files
{CVE-2003-0924}
[woody] - netpbm-free 2:9.20-8.4
-[16 Jan 2004] DSA-425 tcpdump - multiple vulnerabilities
+[16 Jan 2004] DSA-425-1 tcpdump - multiple vulnerabilities
{CVE-2003-1029 CVE-2003-0989 CVE-2004-0055 CVE-2004-0057}
[woody] - tcpdump 3.6.2-2.7
-[16 Jan 2004] DSA-424 mc - buffer overflow
+[16 Jan 2004] DSA-424-1 mc - buffer overflow
{CVE-2003-1023}
[woody] - mc 4.5.55-1.2woody2
-[15 Jan 2004] DSA-423 linux-kernel-2.4.17-ia64 - several vulnerabilities
+[15 Jan 2004] DSA-423-1 linux-kernel-2.4.17-ia64 - several vulnerabilities
{CVE-2003-0001 CVE-2003-0018 CVE-2003-0127 CVE-2003-0461 CVE-2003-0462 CVE-2003-0476 CVE-2003-0501 CVE-2003-0550 CVE-2003-0551 CVE-2003-0552 CVE-2003-0961 CVE-2003-0985}
[woody] - kernel-image-2.4.17-ia64 kernel-image-2.4.17-ia64
-[13 Jan 2004] DSA-422 cvs - remote vulnerability
+[13 Jan 2004] DSA-422-1 cvs - remote vulnerability
[woody] - cvs 1.11.11
-[12 Jan 2004] DSA-421 mod-auth-shadow - password expiration
+[12 Jan 2004] DSA-421-1 mod-auth-shadow - password expiration
{CVE-2004-0041}
[woody] - mod-auth-shadow 1.3-3.1woody.1
-[12 Jan 2004] DSA-420 jitterbug - improperly sanitised input
+[12 Jan 2004] DSA-420-1 jitterbug - improperly sanitised input
{CVE-2004-0028}
[woody] - jitterbug 1.6.2-4.2woody2
-[09 Jan 2004] DSA-419 phpgroupware - missing filename sanitising, SQL injection
+[09 Jan 2004] DSA-419-1 phpgroupware - missing filename sanitising, SQL injection
{CVE-2004-0016 CVE-2004-0017}
[woody] - phpgroupware 0.9.14-0.RC3.2.woody3
-[07 Jan 2004] DSA-418 vbox3 - privilege leak
+[07 Jan 2004] DSA-418-1 vbox3 - privilege leak
{CVE-2004-0015}
[woody] - vbox3 0.1.7.1
-[07 Jan 2004] DSA-417 linux-kernel-2.4.18-powerpc+alpha - missing boundary check
+[07 Jan 2004] DSA-417-1 linux-kernel-2.4.18-powerpc+alpha - missing boundary check
{CVE-2003-0961 CVE-2003-0985}
[woody] - kernel-patch-2.4.18-powerpc 2.4.18-1woody3
[woody] - kernel-image-2.4.18-1-alpha 2.4.18-12
-[06 Jan 2004] DSA-416 fsp - buffer overflow, directory traversal
+[06 Jan 2004] DSA-416-1 fsp - buffer overflow, directory traversal
{CVE-2003-1022 CVE-2004-0011}
[woody] - fsp 2.81.b3-3.1woody1
-[06 Jan 2004] DSA-415 zebra - denial of service
+[06 Jan 2004] DSA-415-1 zebra - denial of service
{CVE-2003-0795 CVE-2003-0858}
NOTE: [woody] - zebra 0.92a-5woody2
NOTE: (newer zebra source package is totally unrelated)
-[06 Jan 2004] DSA-414 jabber - denial of service
+[06 Jan 2004] DSA-414-1 jabber - denial of service
{CVE-2004-0013}
[woody] - jabber 1.4.2a-1.1woody1
-[06 Jan 2004] DSA-413 linux-kernel-2.4.18 - missing boundary check
+[06 Jan 2004] DSA-413-1 linux-kernel-2.4.18 - missing boundary check
{CVE-2003-0985}
[woody] - kernel-source-2.4.18 2.4.18-14.1
[woody] - kernel-image-2.4.18-1-i386 2.4.18-12.1
-[05 Jan 2004] DSA-412 nd - buffer overflows
+[05 Jan 2004] DSA-412-1 nd - buffer overflows
{CVE-2004-0014}
[woody] - nd 0.5.0-1woody1
-[05 Jan 2004] DSA-411 mpg321 - format string vulnerability
+[05 Jan 2004] DSA-411-1 mpg321 - format string vulnerability
{CVE-2003-0969}
[woody] - mpg321 0.2.10.2
-[05 Jan 2004] DSA-410 libnids - buffer overflow
+[05 Jan 2004] DSA-410-1 libnids - buffer overflow
{CVE-2003-0850}
[woody] - libnids 1.16-3woody1
-[05 Jan 2004] DSA-409 bind - denial of service
+[05 Jan 2004] DSA-409-1 bind - denial of service
{CVE-2003-0914}
[woody] - bind 1:8.3.3-2.0woody2
-[05 Jan 2004] DSA-408 screen - integer overflow
+[05 Jan 2004] DSA-408-1 screen - integer overflow
{CVE-2003-0972}
[woody] - screen 3.9.11-5woody1
-[05 Jan 2004] DSA-407 ethereal - buffer overflows
+[05 Jan 2004] DSA-407-1 ethereal - buffer overflows
{CVE-2003-0925 CVE-2003-0926 CVE-2003-0927 CVE-2003-1012 CVE-2003-1013}
[woody] - ethereal 0.9.4-1woody6
-[05 Jan 2004] DSA-406 lftp - buffer overflow
+[05 Jan 2004] DSA-406-1 lftp - buffer overflow
{CVE-2003-0963}
[woody] - lftp 2.4.9-1woody2
-[30 Dec 2003] DSA-405 xsok - missing privilege release
+[30 Dec 2003] DSA-405-1 xsok - missing privilege release
{CVE-2003-0949}
[woody] - xsok 1.02-9woody2
-[04 Dec 2003] DSA-404 rsync - heap overflow
+[04 Dec 2003] DSA-404-1 rsync - heap overflow
{CVE-2003-0962}
[woody] - rsync 2.5.5-0.2
-[01 Dec 2003] DSA-403 kernel-image-2.4.18-1-alpha, kernel-image-2.4.18-1-i386, kernel-source-2.4.18 - local root exploit
+[01 Dec 2003] DSA-403-1 kernel-image-2.4.18-1-alpha, kernel-image-2.4.18-1-i386, kernel-source-2.4.18 - local root exploit
{CVE-2003-0961}
[woody] - kernel-image-2.4.18-1-alpha 2.4.18-11
[woody] - kernel-image-2.4.18-1-i386 2.4.18-12
[woody] - kernel-source-2.4.18 2.4.18-14
-[17 Nov 2003] DSA-402 minimalist - unsanitised input
+[17 Nov 2003] DSA-402-1 minimalist - unsanitised input
{CVE-2003-0902}
[woody] - minimalist 2.2-4
-[17 Nov 2003] DSA-401 hylafax - format strings
+[17 Nov 2003] DSA-401-1 hylafax - format strings
{CVE-2003-0886}
[woody] - hylafax 4.1.1-1.3
-[11 Nov 2003] DSA-400 omega-rpg - buffer overflow
+[11 Nov 2003] DSA-400-1 omega-rpg - buffer overflow
{CVE-2003-0932}
[woody] - omega-rpg 0.90-pa9-7woody1
-[10 Nov 2003] DSA-399 epic4 - buffer overflow
+[10 Nov 2003] DSA-399-1 epic4 - buffer overflow
{CVE-2003-0328}
[woody] - epic4 1.1.2.20020219-2.2
-[10 Nov 2003] DSA-398 conquest - buffer overflow
+[10 Nov 2003] DSA-398-1 conquest - buffer overflow
{CVE-2003-0933}
[woody] - conquest 7.1.1-6woody1
-[07 Nov 2003] DSA-397 postgresql - buffer overflow
+[07 Nov 2003] DSA-397-1 postgresql - buffer overflow
{CVE-2003-0901}
[woody] - postgresql 7.2.1-2woody4
-[29 Oct 2003] DSA-396 thttpd - missing input sanitizing, wrong calculation
+[29 Oct 2003] DSA-396-1 thttpd - missing input sanitizing, wrong calculation
{CVE-2002-1562 CVE-2003-0899}
[woody] - thttpd 2.21b-11.2
-[15 Oct 2003] DSA-395 tomcat4 - incorrect input handling
+[15 Oct 2003] DSA-395-1 tomcat4 - incorrect input handling
{CVE-2003-0866}
[woody] - tomcat4 4.0.3-3woody3
-[11 Oct 2003] DSA-394 openssl095 - ASN.1 parsing vulnerability
+[11 Oct 2003] DSA-394-1 openssl095 - ASN.1 parsing vulnerability
{CVE-2003-0543 CVE-2003-0544 CVE-2003-0545}
[woody] - openssl095 0.9.5a-6.woody.3
-[01 Oct 2003] DSA-393 openssl - denial of service
+[01 Oct 2003] DSA-393-1 openssl - denial of service
{CVE-2003-0543 CVE-2003-0544 CVE-2003-0545}
[woody] - openssl 0.9.6c-2.woody.4
-[29 Sep 2003] DSA-392 webfs - buffer overflows, file and directory exposure
+[29 Sep 2003] DSA-392-1 webfs - buffer overflows, file and directory exposure
{CVE-2003-0832 CVE-2003-0833}
[woody] - webfs 1.17.2
-[28 Sep 2003] DSA-391 freesweep - buffer overflow
+[28 Sep 2003] DSA-391-1 freesweep - buffer overflow
{CVE-2003-0828}
[woody] - freesweep 0.88-4woody1
-[26 Sep 2003] DSA-390 marbles - buffer overflow
+[26 Sep 2003] DSA-390-1 marbles - buffer overflow
{CVE-2003-0830}
[woody] - marbles 1.0.2-1woody1
-[20 Sep 2003] DSA-389 ipmasq - insecure packet filtering rules
+[20 Sep 2003] DSA-389-1 ipmasq - insecure packet filtering rules
{CVE-2003-0785}
[woody] - ipmasq 3.5.10c
-[19 Sep 2003] DSA-388 kdebase - several vulnerabilities
+[19 Sep 2003] DSA-388-1 kdebase - several vulnerabilities
{CVE-2003-0690 CVE-2003-0692}
[woody] - kdebase 4:2.2.2-14.7
-[18 Sep 2003] DSA-387 gopher - buffer overflows
+[18 Sep 2003] DSA-387-1 gopher - buffer overflows
{CVE-2003-0805}
[woody] - gopher 3.0.3woody1
-[18 Sep 2003] DSA-386 libmailtools-perl - input validation bug
+[18 Sep 2003] DSA-386-1 libmailtools-perl - input validation bug
{CVE-2002-1271}
[woody] - libmailtools-perl 1.44-1woody1
-[18 Sep 2003] DSA-385 hztty - buffer overflows
+[18 Sep 2003] DSA-385-1 hztty - buffer overflows
{CVE-2003-0783}
[woody] - hztty 2.0-5.2woody1
-[17 Sep 2003] DSA-384 sendmail - buffer overflows
+[17 Sep 2003] DSA-384-1 sendmail - buffer overflows
{CVE-2003-0681 CVE-2003-0694}
[woody] - sendmail 8.12.3-6.6
[woody] - sendmail-wide 8.12.3+3.5Wbeta-5.5
-[17 Sep 2003] DSA-383 ssh-krb5 - possible remote vulnerability
+[17 Sep 2003] DSA-383-1 ssh-krb5 - possible remote vulnerability
{CVE-2003-0693 CVE-2003-0695 CVE-2003-0682}
[woody] - openssh-krb5 3.4p1-0woody4
-[16 Sep 2003] DSA-382 ssh - possible remote vulnerability
+[16 Sep 2003] DSA-382-1 ssh - possible remote vulnerability
{CVE-2003-0693 CVE-2003-0695 CVE-2003-0682}
[woody] - openssh 1:3.4p1-1.woody.3
-[13 Sep 2003] DSA-381 mysql - buffer overflow
+[13 Sep 2003] DSA-381-1 mysql - buffer overflow
{CVE-2003-0780}
[woody] - mysql 3.23.49-8.5
-[12 Sep 2003] DSA-380 xfree86 - buffer overflows, denial of service
+[12 Sep 2003] DSA-380-1 xfree86 - buffer overflows, denial of service
{CVE-2003-0063 CVE-2003-0071 CVE-2002-0164 CVE-2003-0730}
[woody] - xfree86 4.1.0-16woody1
-[11 Sep 2003] DSA-379 sane-backends - several vulnerabilities
+[11 Sep 2003] DSA-379-1 sane-backends - several vulnerabilities
{CVE-2003-0773 CVE-2003-0774 CVE-2003-0775 CVE-2003-0776 CVE-2003-0777 CVE-2003-0778}
[woody] - sane-backends 1.0.7-4
-[07 Sep 2003] DSA-378 mah-jong - buffer overflows, denial of service
+[07 Sep 2003] DSA-378-1 mah-jong - buffer overflows, denial of service
{CVE-2003-0705 CVE-2003-0706}
[woody] - mah-jong 1.4-2
-[04 Sep 2003] DSA-377 wu-ftpd - insecure program execution
+[04 Sep 2003] DSA-377-1 wu-ftpd - insecure program execution
{CVE-1999-0997}
[woody] - wu-ftpd 2.6.2-3woody2
-[04 Sep 2003] DSA-376 exim - buffer overflow
+[04 Sep 2003] DSA-376-1 exim - buffer overflow
{CVE-2003-0743}
[woody] - exim 3.35-1woody2
[woody] - exim-tls 3.35-3woody1
-[29 Aug 2003] DSA-375 node - buffer overflow, format string
+[29 Aug 2003] DSA-375-1 node - buffer overflow, format string
{CVE-2003-0707 CVE-2003-0708}
[woody] - node 0.3.0a-2woody1
-[26 Aug 2003] DSA-374 libpam-smb - buffer overflow
+[26 Aug 2003] DSA-374-1 libpam-smb - buffer overflow
{CVE-2003-0686}
[woody] - libpam-smb 1.1.6-1.1woody1
-[16 Aug 2003] DSA-373 autorespond - buffer overflow
+[16 Aug 2003] DSA-373-1 autorespond - buffer overflow
{CVE-2003-0654}
[woody] - autorespond 2.0.2-2woody1
-[16 Aug 2003] DSA-372 netris - buffer overflow
+[16 Aug 2003] DSA-372-1 netris - buffer overflow
{CVE-2003-0685}
[woody] - netris 0.5-4woody1
-[11 Aug 2003] DSA-371 perl - cross-site scripting
+[11 Aug 2003] DSA-371-1 perl - cross-site scripting
{CVE-2003-0615}
[woody] - perl 5.6.1-8.3
-[08 Aug 2003] DSA-370 pam-pgsql - format string
+[08 Aug 2003] DSA-370-1 pam-pgsql - format string
{CVE-2003-0672}
[woody] - pam-pgsql 0.5.2-3woody1
-[08 Aug 2003] DSA-369 zblast - buffer overflow
+[08 Aug 2003] DSA-369-1 zblast - buffer overflow
{CVE-2003-0613}
[woody] - zblast 1.2pre-5woody2
-[08 Aug 2003] DSA-368 xpcd - buffer overflow
+[08 Aug 2003] DSA-368-1 xpcd - buffer overflow
{CVE-2003-0649}
[woody] - xpcd 2.08-8woody1
-[08 Aug 2003] DSA-367 xtokkaetama - buffer overflow
+[08 Aug 2003] DSA-367-1 xtokkaetama - buffer overflow
{CVE-2003-0652}
[woody] - xtokkaetama 1.0b-6woody2
-[05 Aug 2003] DSA-366 eroaster - insecure temporary file
+[05 Aug 2003] DSA-366-1 eroaster - insecure temporary file
{CVE-2003-0656}
[woody] - eroaster 2.1.0.0.3-2woody1
-[05 Aug 2003] DSA-365 phpgroupware - several vulnerabilities
+[05 Aug 2003] DSA-365-1 phpgroupware - several vulnerabilities
{CVE-2003-0504 CVE-2003-0599 CVE-2003-0657}
[woody] - phpgroupware 0.9.14-0.RC3.2.woody2
-[04 Aug 2003] DSA-364 man-db - buffer overflows, arbitrary command execution
+[04 Aug 2003] DSA-364-1 man-db - buffer overflows, arbitrary command execution
{CVE-2003-0620 CVE-2003-0645}
[woody] - man-db 2.3.20-18.woody.4
-[03 Aug 2003] DSA-363 postfix - denial of service, bounce-scanning
+[03 Aug 2003] DSA-363-1 postfix - denial of service, bounce-scanning
{CVE-2003-0468 CVE-2003-0540}
[woody] - postfix 1.1.11-0.woody3
-[02 Aug 2003] DSA-362 mindi - insecure temporary file
+[02 Aug 2003] DSA-362-1 mindi - insecure temporary file
{CVE-2003-0617}
[woody] - mindi 0.58.r5-1woody1
-[01 Aug 2003] DSA-361 kdelibs, kdelibs-crypto - several vulnerabilities
+[01 Aug 2003] DSA-361-1 kdelibs, kdelibs-crypto - several vulnerabilities
{CVE-2003-0459 CVE-2003-0370}
[woody] - kdelibs 4:2.2.2-13.woody.8
[woody] - kdelibs-crypto 4:2.2.2-6woody2
-[01 Aug 2003] DSA-360 xfstt - several vulnerabilities
+[01 Aug 2003] DSA-360-1 xfstt - several vulnerabilities
{CVE-2003-0581 CVE-2003-0625}
[woody] - xfstt 1.2.1-3
-[31 Jul 2003] DSA-359 atari800 - buffer overflows
+[31 Jul 2003] DSA-359-1 atari800 - buffer overflows
{CVE-2003-0630}
[woody] - atari800 1.2.2-1woody2
-[31 Jul 2003] DSA-358 linux-kernel-2.4.18 - several vulnerabilities
+[31 Jul 2003] DSA-358-1 linux-kernel-2.4.18 - several vulnerabilities
{CVE-2003-0461 CVE-2003-0462 CVE-2003-0476 CVE-2003-0501 CVE-2003-0550 CVE-2003-0551 CVE-2003-0552 CVE-2003-0018 CVE-2003-0619 CVE-2003-0643}
[woody] - kernel-source-2.4.18 2.4.18-13
[woody] - kernel-image-2.4.18-1-i386 2.4.18-11
[woody] - kernel-image-2.4.18-i386bf 2.4.18-5woody4
[woody] - kernel-image-2.4.18-1-alpha 2.4.18-10.
-[31 Jul 2003] DSA-357 wu-ftpd - remote root exploit
+[31 Jul 2003] DSA-357-1 wu-ftpd - remote root exploit
{CVE-2003-0466}
[woody] - wu-ftpd 2.6.2-3woody1
-[30 Jul 2003] DSA-356 xtokkaetama - buffer overflows
+[30 Jul 2003] DSA-356-1 xtokkaetama - buffer overflows
{CVE-2003-0611}
[woody] - xtokkaetama 1.0b-6woody1
-[30 Jul 2003] DSA-355 gallery - cross-site scripting
+[30 Jul 2003] DSA-355-1 gallery - cross-site scripting
{CVE-2003-0614}
[woody] - gallery 1.2.5-8woody1
-[29 Jul 2003] DSA-354 xconq - buffer overflows
+[29 Jul 2003] DSA-354-1 xconq - buffer overflows
{CVE-2003-0607}
[woody] - xconq 7.4.1-2woody2
-[29 Jul 2003] DSA-353 sup - insecure temporary file
+[29 Jul 2003] DSA-353-1 sup - insecure temporary file
{CVE-2003-0606}
[woody] - sup 1.8-8woody1
-[22 Jul 2003] DSA-352 fdclone - insecure temporary directory
+[22 Jul 2003] DSA-352-1 fdclone - insecure temporary directory
{CVE-2003-0596}
[woody] - fdclone 2.00a-1woody3
-[16 Jul 2003] DSA-351 php4 - cross-site scripting
+[16 Jul 2003] DSA-351-1 php4 - cross-site scripting
{CVE-2003-0442}
[woody] - php4 4:4.1.2-6woody3
-[15 Jul 2003] DSA-350 falconseye - buffer overflow
+[15 Jul 2003] DSA-350-1 falconseye - buffer overflow
{CVE-2003-0358}
[woody] - falconseye 1.9.3-7woody3
-[14 Jul 2003] DSA-349 nfs-utils - buffer overflow
+[14 Jul 2003] DSA-349-1 nfs-utils - buffer overflow
{CVE-2003-0252}
[woody] - nfs-utils 1:1.0-2woody1
-[11 Jul 2003] DSA-348 traceroute-nanog - integer overflow, buffer overflow
+[11 Jul 2003] DSA-348-1 traceroute-nanog - integer overflow, buffer overflow
{CVE-2003-0453}
[woody] - traceroute-nanog 6.1.1-1.3
-[08 Jul 2003] DSA-347 teapop - SQL injection
+[08 Jul 2003] DSA-347-1 teapop - SQL injection
{CVE-2003-0515}
[woody] - teapop 0.3.4-1woody2
-[08 Jul 2003] DSA-346 phpsysinfo - directory traversal
+[08 Jul 2003] DSA-346-1 phpsysinfo - directory traversal
{CVE-2003-0536}
[woody] - phpsysinfo 2.0-3woody1
-[08 Jul 2003] DSA-345 xbl - buffer overflow
+[08 Jul 2003] DSA-345-1 xbl - buffer overflow
{CVE-2003-0535}
[woody] - xbl 1.0k-3woody2
-[08 Jul 2003] DSA-344 unzip - directory traversal
+[08 Jul 2003] DSA-344-1 unzip - directory traversal
{CVE-2003-0282}
[woody] - unzip 5.50-1woody2
-[08 Jul 2003] DSA-343 skk, ddskk - insecure temporary file
+[08 Jul 2003] DSA-343-1 skk, ddskk - insecure temporary file
{CVE-2003-0539}
[woody] - skk 10.62a-4woody1
[woody] - ddskk 11.6.rel.0-2woody1
-[07 Jul 2003] DSA-342 mozart - unsafe mailcap configuration
+[07 Jul 2003] DSA-342-1 mozart - unsafe mailcap configuration
{CVE-2003-0538}
[woody] - mozart 1.2.3.20011204-3woody1
-[07 Jul 2003] DSA-341 liece - insecure temporary file
+[07 Jul 2003] DSA-341-1 liece - insecure temporary file
{CVE-2003-0537}
[woody] - liece 2.0+0.20020217cvs-2.1
-[06 Jul 2003] DSA-340 x-face-el - insecure temporary file
+[06 Jul 2003] DSA-340-1 x-face-el - insecure temporary file
[woody] - x-face-el 1.3.6.19-1woody1
-[06 Jul 2003] DSA-339 semi - insecure temporary file
+[06 Jul 2003] DSA-339-1 semi - insecure temporary file
{CVE-2003-0440}
[woody] - semi 1.14.3.cvs.2001.08.10-1woody2
[woody] - wemi 1.14.0.20010802wemiko-1.3
-[29 Jun 2003] DSA-338 proftpd - SQL injection
+[29 Jun 2003] DSA-338-1 proftpd - SQL injection
{CVE-2003-0500}
[woody] - proftpd 1.2.4+1.2.5rc1-5woody2
-[29 Jun 2003] DSA-337 gtksee - buffer overflow
+[29 Jun 2003] DSA-337-1 gtksee - buffer overflow
{CVE-2003-0444}
[woody] - gtksee 0.5.0-6
-[29 Jun 2003] DSA-336 linux-kernel-2.2.20 - several vulnerabilities
+[29 Jun 2003] DSA-336-1 linux-kernel-2.2.20 - several vulnerabilities
{CVE-2002-1380 CVE-2002-0429 CVE-2003-0001 CVE-2003-0127 CVE-2003-0364 CVE-2003-0246 CVE-2003-0244 CVE-2003-0247 CVE-2003-0248}
[woody] - kernel-source-2.2.20 2.2.20-5woody2
[woody] - kernel-image-2.2.20-i386 2.2.20-5woody3
-[28 Jun 2003] DSA-335 mantis - incorrect permissions
+[28 Jun 2003] DSA-335-1 mantis - incorrect permissions
{CVE-2003-0499}
[woody] - mantis 0.17.1-3
-[28 Jun 2003] DSA-334 xgalaga - buffer overflows
+[28 Jun 2003] DSA-334-1 xgalaga - buffer overflows
{CVE-2003-0454}
[woody] - xgalaga 2.0.34-19woody1
-[27 Jun 2003] DSA-333 acm - integer overflow
+[27 Jun 2003] DSA-333-1 acm - integer overflow
{CVE-2002-0391}
[woody] - acm 5.0-3.woody.1
-[27 Jun 2003] DSA-332 linux-kernel-2.4.17 - several vulnerabilities
+[27 Jun 2003] DSA-332-1 linux-kernel-2.4.17 - several vulnerabilities
{CVE-2002-0429 CVE-2003-0001 CVE-2003-0127 CVE-2003-0244 CVE-2003-0246 CVE-2003-0247 CVE-2003-0248 CVE-2003-0364}
[woody] - kernel-source-2.4.17 2.4.17-1woody1
[woody] - kernel-patch-2.4.17-mips 2.4.17-0.020226.2.woody2
-[27 Jun 2003] DSA-331 imagemagick - insecure temporary file
+[27 Jun 2003] DSA-331-1 imagemagick - insecure temporary file
{CVE-2003-0455}
[woody] - imagemagick 4:5.4.4.5-1woody1
-[23 Jun 2003] DSA-330 tcptraceroute - failure to drop root privileges
+[23 Jun 2003] DSA-330-1 tcptraceroute - failure to drop root privileges
{CVE-2003-0489}
[woody] - tcptraceroute 1.2-2
-[20 Jun 2003] DSA-329 osh - buffer overflows
+[20 Jun 2003] DSA-329-1 osh - buffer overflows
{CVE-2003-0452}
[woody] - osh 1.7-11woody1
-[19 Jun 2003] DSA-328 webfs - buffer overflow
+[19 Jun 2003] DSA-328-1 webfs - buffer overflow
{CVE-2003-0445}
[woody] - webfs 1.17.1
-[19 Jun 2003] DSA-327 xbl - buffer overflows
+[19 Jun 2003] DSA-327-1 xbl - buffer overflows
{CVE-2003-0451}
[woody] - xbl 1.0k-3woody1
-[19 Jun 2003] DSA-326 orville-write - buffer overflows
+[19 Jun 2003] DSA-326-1 orville-write - buffer overflows
{CVE-2003-0441}
[woody] - orville-write 2.53-4woody1
-[19 Jun 2003] DSA-325 eldav - insecure temporary file
+[19 Jun 2003] DSA-325-1 eldav - insecure temporary file
{CVE-2003-0438}
[woody] - eldav 0.0.20020411-1woody1
-[18 Jun 2003] DSA-324 ethereal - several vulnerabilities
+[18 Jun 2003] DSA-324-1 ethereal - several vulnerabilities
{CVE-2003-0428 CVE-2003-0429 CVE-2003-0431 CVE-2003-0432}
[woody] - ethereal 0.9.4-1woody5
-[16 Jun 2003] DSA-323 noweb - insecure temporary files
+[16 Jun 2003] DSA-323-1 noweb - insecure temporary files
{CVE-2003-0381}
[woody] - noweb 2.9a-7.3
-[16 Jun 2003] DSA-322 typespeed - buffer overflow
+[16 Jun 2003] DSA-322-1 typespeed - buffer overflow
{CVE-2003-0435}
[woody] - typespeed 0.4.1-2.2
-[13 Jun 2003] DSA-321 radiusd-cistron - buffer overflow
+[13 Jun 2003] DSA-321-1 radiusd-cistron - buffer overflow
{CVE-2003-0450}
[woody] - radiusd-cistron 1.6.6-1woody1
-[13 Jun 2003] DSA-320 mikmod - buffer overflow
+[13 Jun 2003] DSA-320-1 mikmod - buffer overflow
{CVE-2003-0427}
[woody] - mikmod 3.1.6-4woody3
-[12 Jun 2003] DSA-319 webmin - session ID spoofing
+[12 Jun 2003] DSA-319-1 webmin - session ID spoofing
{CVE-2003-0101}
[woody] - webmin 0.94-7woody1
-[12 Jun 2003] DSA-318 lyskom-server - denial of service
+[12 Jun 2003] DSA-318-1 lyskom-server - denial of service
{CVE-2003-0366}
[woody] - lyskom-server 2.0.6-1woody1
-[11 Jun 2003] DSA-317 cupsys - denial of service
+[11 Jun 2003] DSA-317-1 cupsys - denial of service
{CVE-2003-0195}
[woody] - cupsys 1.1.14-5
-[11 Jun 2003] DSA-316 nethack - buffer overflow, incorrect permissions
+[11 Jun 2003] DSA-316-1 nethack - buffer overflow, incorrect permissions
{CVE-2003-0358 CVE-2003-0359}
[woody] - nethack 3.4.0-3.0woody3
[woody] - slashem 0.0.6E4F8-4.0woody3
-[11 Jun 2003] DSA-315 gnocatan - buffer overflows, denial of service
+[11 Jun 2003] DSA-315-1 gnocatan - buffer overflows, denial of service
{CVE-2003-0433}
[woody] - gnocatan 0.6.1-5woody2
-[11 Jun 2003] DSA-314 atftp - buffer overflow
+[11 Jun 2003] DSA-314-1 atftp - buffer overflow
{CVE-2003-0380}
[woody] - atftp 0.6.1.1.0woody1
-[11 Jun 2003] DSA-313 ethereal - buffer overflows, integer overflows
+[11 Jun 2003] DSA-313-1 ethereal - buffer overflows, integer overflows
{CVE-2003-0356 CVE-2003-0357}
[woody] - ethereal 0.9.4-1woody4
-[09 Jun 2003] DSA-312 kernel-patch-2.4.18-powerpc - several vulnerabilities
+[09 Jun 2003] DSA-312-1 kernel-patch-2.4.18-powerpc - several vulnerabilities
{CVE-2002-0429 CVE-2003-0001 CVE-2003-0127 CVE-2003-0244 CVE-2003-0246 CVE-2003-0247 CVE-2003-0248}
[woody] - kernel-patch-2.4.18-powerpc 2.4.18-1woody1
-[08 Jun 2003] DSA-311 linux-kernel-2.4.18 - several vulnerabilities
+[08 Jun 2003] DSA-311-1 linux-kernel-2.4.18 - several vulnerabilities
{CVE-2002-0429 CVE-2003-0001 CVE-2003-0127 CVE-2003-0244 CVE-2003-0246 CVE-2003-0247 CVE-2003-0248 CVE-2003-0364}
[woody] - kernel-source-2.4.18 2.4.18-9
[woody] - kernel-image-2.4.18-1-i386 2.4.18-8
[woody] - kernel-image-2.4.18-i386bf 2.4.18-5woody1.
-[08 Jun 2003] DSA-310 xaos - improper setuid-root execution
+[08 Jun 2003] DSA-310-1 xaos - improper setuid-root execution
{CVE-2003-0385}
[woody] - xaos 3.0-23woody1
-[06 Jun 2003] DSA-309 eterm - buffer overflow
+[06 Jun 2003] DSA-309-1 eterm - buffer overflow
{CVE-2003-0382}
[woody] - eterm 0.9.2-0pre2002042903.1
-[06 Jun 2003] DSA-308 gzip - insecure temporary files
+[06 Jun 2003] DSA-308-1 gzip - insecure temporary files
{CVE-1999-1332 CVE-2003-0367}
[woody] - gzip 1.3.2-3woody1
-[27 May 2003] DSA-307 gps - multiple vulnerabilities
+[27 May 2003] DSA-307-1 gps - multiple vulnerabilities
{CVE-2003-0361 CVE-2003-0360 CVE-2003-0362}
[woody] - gps 0.9.4-1woody1
-[19 May 2003] DSA-306 ircii-pana - buffer overflows, integer overflow
+[19 May 2003] DSA-306-1 ircii-pana - buffer overflows, integer overflow
{CVE-2003-0321 CVE-2003-0322 CVE-2003-0328}
[woody] - ircii-pana 1.0-0c19-1.1
-[15 May 2003] DSA-305 sendmail - insecure temporary files
+[15 May 2003] DSA-305-1 sendmail - insecure temporary files
{CVE-2003-0308}
[woody] - sendmail 8.12.3-6.4
-[15 May 2003] DSA-304 lv - privilege escalation
+[15 May 2003] DSA-304-1 lv - privilege escalation
{CVE-2003-0188}
[woody] - lv 4.49.4-7woody2
-[15 May 2003] DSA-303 mysql - privilege escalation
+[15 May 2003] DSA-303-1 mysql - privilege escalation
{CVE-2003-0073}
[woody] - mysql 3.23.49-8.4
-[07 May 2003] DSA-302 fuzz - privilege escalation
+[07 May 2003] DSA-302-1 fuzz - privilege escalation
{CVE-2003-0261}
[woody] - fuzz 0.6-6woody1
-[07 May 2003] DSA-301 libgtop - buffer overflow
+[07 May 2003] DSA-301-1 libgtop - buffer overflow
{CVE-2001-0928}
[woody] - libgtop 1.0.13-3.1
-[06 May 2003] DSA-300 balsa - buffer overflow
+[06 May 2003] DSA-300-1 balsa - buffer overflow
{CVE-2003-0167}
[woody] - balsa 1.2.4-2.2
-[06 May 2003] DSA-299 leksbot - improper setuid-root execution
+[06 May 2003] DSA-299-1 leksbot - improper setuid-root execution
{CVE-2003-0262}
[woody] - leksbot 1.2-3.1
-[02 May 2003] DSA-298 epic4 - buffer overflows
+[02 May 2003] DSA-298-1 epic4 - buffer overflows
{CVE-2003-0323}
[woody] - epic4 1.1.2.20020219-2.1
-[01 May 2003] DSA-297 snort - integer overflow, buffer overflow
+[01 May 2003] DSA-297-1 snort - integer overflow, buffer overflow
{CVE-2003-0033 CVE-2003-0209}
[woody] - snort 1.8.4beta1-3.1
-[30 Apr 2003] DSA-296 kdebase - insecure execution
+[30 Apr 2003] DSA-296-1 kdebase - insecure execution
{CVE-2003-0204}
[woody] - kdebase 2.2.2-14.4
-[30 Apr 2003] DSA-295 pptpd - buffer overflow
+[30 Apr 2003] DSA-295-1 pptpd - buffer overflow
{CVE-2003-0213}
[woody] - pptpd 1.1.2-1.4
-[23 Apr 2003] DSA-294 gkrellm-newsticker - missing quoting, incomplete parser
+[23 Apr 2003] DSA-294-1 gkrellm-newsticker - missing quoting, incomplete parser
{CVE-2003-0205 CVE-2003-0206}
[woody] - gkrellm-newsticker 0.3-3.1
-[23 Apr 2003] DSA-293 kdelibs - insecure execution
+[23 Apr 2003] DSA-293-1 kdelibs - insecure execution
{CVE-2003-0204}
[woody] - kdebase 4:2.2.2-13.woody.7
-[22 Apr 2003] DSA-292 mime-support - insecure temporary file creation
+[22 Apr 2003] DSA-292-1 mime-support - insecure temporary file creation
{CVE-2003-0214}
[woody] - mime-support 3.18-1.3
-[22 Apr 2003] DSA-291 ircii - buffer overflows
+[22 Apr 2003] DSA-291-1 ircii - buffer overflows
{CVE-2003-0323}
[woody] - ircii 20020322-1.1
-[17 Apr 2003] DSA-290 sendmail-wide - char-to-int conversion
+[17 Apr 2003] DSA-290-1 sendmail-wide - char-to-int conversion
{CVE-2003-0161}
[woody] - sendmail-wide 8.12.3+3.5Wbeta-5.4
-[17 Apr 2003] DSA-289 rinetd - incorrect memory resizing
+[17 Apr 2003] DSA-289-1 rinetd - incorrect memory resizing
{CVE-2003-0212}
[woody] - rinetd 0.61-1.1
-[17 Apr 2003] DSA-288 openssl - several vulnerabilities
+[17 Apr 2003] DSA-288-1 openssl - several vulnerabilities
{CVE-2003-0147 CVE-2003-0131}
[woody] - openssl 0.9.6c-2.woody.3
-[15 Apr 2003] DSA-287 epic - buffer overflows
+[15 Apr 2003] DSA-287-1 epic - buffer overflows
{CVE-2003-0324}
[woody] - epic 3.004-17.1
-[14 Apr 2003] DSA-286 gs-common - insecure temporary file
+[14 Apr 2003] DSA-286-1 gs-common - insecure temporary file
{CVE-2003-0207}
[woody] - gs-common 0.3.3.0woody1
-[14 Apr 2003] DSA-285 lprng - insecure temporary file
+[14 Apr 2003] DSA-285-1 lprng - insecure temporary file
{CVE-2003-0136}
[woody] - lprng 3.8.10-1.2
-[12 Apr 2003] DSA-284 kdegraphics - insecure execution
+[12 Apr 2003] DSA-284-1 kdegraphics - insecure execution
{CVE-2003-0204}
[woody] - kdegraphics 3.8.10-1.2
-[11 Apr 2003] DSA-283 xfsdump - insecure file creation
+[11 Apr 2003] DSA-283-1 xfsdump - insecure file creation
{CVE-2003-0173}
[woody] - xfsdump 2.0.1-2
-[09 Apr 2003] DSA-282 glibc - integer overflow
+[09 Apr 2003] DSA-282-1 glibc - integer overflow
{CVE-2003-0028}
[woody] - glibc 2.2.5-11.5
-[08 Apr 2003] DSA-281 moxftp - buffer overflow
+[08 Apr 2003] DSA-281-1 moxftp - buffer overflow
{CVE-2003-0203}
[woody] - moxftp 2.2-18.1
-[07 Apr 2003] DSA-280 samba - buffer overflow
+[07 Apr 2003] DSA-280-1 samba - buffer overflow
{CVE-2003-0201 CVE-2003-0196}
[woody] - samba 2.2.3a-12.3
-[07 Apr 2003] DSA-279 metrics - insecure temporary file creation
+[07 Apr 2003] DSA-279-1 metrics - insecure temporary file creation
{CVE-2003-0202}
NOTE: Potato-only vulnerability, package was removed from woody.
-[04 Apr 2003] DSA-278 sendmail - char-to-int conversion
+[04 Apr 2003] DSA-278-1 sendmail - char-to-int conversion
{CVE-2003-0161}
[woody] - sendmail 8.12.3-6.3
-[03 Apr 2003] DSA-277 apcupsd - buffer overflows, format string
+[03 Apr 2003] DSA-277-1 apcupsd - buffer overflows, format string
{CVE-2003-0098 CVE-2003-0099}
[woody] - apcupsd 3.8.5-1.1.1
-[03 Apr 2003] DSA-276 linux-kernel-s390 - local privilege escalation
+[03 Apr 2003] DSA-276-1 linux-kernel-s390 - local privilege escalation
{CVE-2003-0127}
[woody] - kernel-patch-2.4.17-s390 0.0.20020816-0.woody.1.1
[woody] - kernel-image-2.4.17-s390 2.4.17-2.woody.2.2
-[02 Apr 2003] DSA-275 lpr-ppd - buffer overflow
+[02 Apr 2003] DSA-275-1 lpr-ppd - buffer overflow
{CVE-2003-0144}
[woody] - lpr-ppd 0.72-2.1
-[28 Mar 2003] DSA-274 mutt - buffer overflow
+[28 Mar 2003] DSA-274-1 mutt - buffer overflow
{CVE-2003-0167}
[woody] - mutt 1.3.28-2.2
-[28 Mar 2003] DSA-273 krb4 - Cryptographic weakness
+[28 Mar 2003] DSA-273-1 krb4 - Cryptographic weakness
{CVE-2003-0138 CVE-2003-0139}
[woody] - krb4 1.1-8-2.3
-[28 Mar 2003] DSA-272 dietlibc - integer overflow
+[28 Mar 2003] DSA-272-1 dietlibc - integer overflow
{CVE-2003-0028}
[woody] - dietlibc 0.12-2.5
-[27 Mar 2003] DSA-271 ecartis - unauthorized password change
+[27 Mar 2003] DSA-271-1 ecartis - unauthorized password change
{CVE-2003-0162}
[woody] - ecartis 0.129a+1.0.0-snap20020514-1.1
-[27 Mar 2003] DSA-270 linux-kernel-mips - local privilege escalation
+[27 Mar 2003] DSA-270-1 linux-kernel-mips - local privilege escalation
{CVE-2003-0127}
[woody] - kernel-patch-2.4.17-mips 2.4.17-0.020226.2.woody1
[woody] - kernel-patch-2.4.19-mips 2.4.19-0.020911.1.woody1
-[26 Mar 2003] DSA-269 heimdal - Cryptographic weakness
+[26 Mar 2003] DSA-269-1 heimdal - Cryptographic weakness
{CVE-2003-0138}
[woody] - heimdal 0.4e-7.woody.8
-[25 Mar 2003] DSA-268 mutt - buffer overflow
+[25 Mar 2003] DSA-268-1 mutt - buffer overflow
{CVE-2003-0140}
[woody] - mutt 1.3.28-2.1
-[24 Mar 2003] DSA-267 lpr - buffer overflow
+[24 Mar 2003] DSA-267-1 lpr - buffer overflow
{CVE-2003-0144}
[woody] - lpr 2000.05.07-4.3
-[24 Mar 2003] DSA-266 krb5 - several vulnerabilities
+[24 Mar 2003] DSA-266-1 krb5 - several vulnerabilities
{CVE-2003-0028 CVE-2003-0072 CVE-2003-0082 CVE-2003-0138 CVE-2003-0139}
[woody] - krb5 1.2.4-5woody4
-[21 Mar 2003] DSA-265 bonsai - several vulnerabilities
+[21 Mar 2003] DSA-265-1 bonsai - several vulnerabilities
{CVE-2003-0152 CVE-2003-0153 CVE-2003-0154 CVE-2003-0155}
[woody] - bonsai 1.3+cvs20020224-1woody1
-[19 Mar 2003] DSA-264 lxr - missing filename sanitizing
+[19 Mar 2003] DSA-264-1 lxr - missing filename sanitizing
{CVE-2003-0156}
[woody] - lxr 0.3-3
-[17 Mar 2003] DSA-263 netpbm-free - math overflow errors
+[17 Mar 2003] DSA-263-1 netpbm-free - math overflow errors
{CVE-2003-0146}
[woody] - netpbm-free 2:9.20-8.2
-[15 Mar 2003] DSA-262 samba - remote exploit
+[15 Mar 2003] DSA-262-1 samba - remote exploit
{CVE-2003-0085 CVE-2003-0086}
[woody] - samba 2.2.3a-12.1
-[14 Mar 2003] DSA-261 tcpdump - infinite loop
+[14 Mar 2003] DSA-261-1 tcpdump - infinite loop
{CVE-2003-0093 CVE-2003-0145}
[woody] - tcpdump 3.6.2-2.4
-[13 Mar 2003] DSA-260 file - buffer overflow
+[13 Mar 2003] DSA-260-1 file - buffer overflow
{CVE-2003-0102}
[woody] - file 3.37-3.1.woody.1
-[12 Mar 2003] DSA-259 qpopper - mail user privilege escalation
+[12 Mar 2003] DSA-259-1 qpopper - mail user privilege escalation
{CVE-2003-0143}
[woody] - qpopper 4.0.4-2.woody.3
-[10 Mar 2003] DSA-258 ethereal - format string vulnerability
+[10 Mar 2003] DSA-258-1 ethereal - format string vulnerability
{CVE-2003-0081}
[woody] - ethereal 0.9.4-1woody3
-[04 Mar 2003] DSA-257 sendmail - remote exploit
+[04 Mar 2003] DSA-257-1 sendmail - remote exploit
{CVE-2002-1337}
[woody] - sendmail 8.12.3-5
[woody] - sendmail-wide 8.12.3+3.5Wbeta-5.2
-[28 Feb 2003] DSA-256 mhc - insecure temporary file
+[28 Feb 2003] DSA-256-1 mhc - insecure temporary file
{CVE-2003-0120}
[woody] - mhc 0.25+20010625-7.1
-[27 Feb 2003] DSA-255 tcpdump - infinite loop
+[27 Feb 2003] DSA-255-1 tcpdump - infinite loop
{CVE-2003-0108 CVE-2002-0380}
[woody] - tcpdump 3.6.2-2.3
-[27 Feb 2003] DSA-254 traceroute-nanog - buffer overflow
+[27 Feb 2003] DSA-254-1 traceroute-nanog - buffer overflow
{CVE-2002-1051 CVE-2002-1364 CVE-2002-1386 CVE-2002-1387}
[woody] - traceroute-nanog 6.1.1-1.2
-[24 Feb 2003] DSA-253 openssl - information leak
+[24 Feb 2003] DSA-253-1 openssl - information leak
{CVE-2003-0078}
[woody] - openssl 0.9.6c-2.woody.2
-[21 Feb 2003] DSA-252 slocate - buffer overflow
+[21 Feb 2003] DSA-252-1 slocate - buffer overflow
{CVE-2003-0056}
[woody] - slocate 2.6-1.3.1
-[14 Feb 2003] DSA-251 w3m - missing HTML quoting
+[14 Feb 2003] DSA-251-1 w3m - missing HTML quoting
{CVE-2002-1335 CVE-2002-1348}
[woody] - w3m 0.3-2.4
-[12 Feb 2003] DSA-250 w3mmee-ssl - missing HTML quoting
+[12 Feb 2003] DSA-250-1 w3mmee-ssl - missing HTML quoting
{CVE-2002-1335 CVE-2002-1348}
NOTE: not in sid/sarge
-[11 Feb 2003] DSA-249 w3mmee - missing HTML quoting
+[11 Feb 2003] DSA-249-1 w3mmee - missing HTML quoting
{CVE-2002-1335 CVE-2002-1348}
[woody] - w3mmee 0.3-2.4
-[31 Jan 2003] DSA-248 hypermail - buffer overflows
+[31 Jan 2003] DSA-248-1 hypermail - buffer overflows
{CVE-2003-0057}
[woody] - hypermail 2.1.3-2.0
-[30 Jan 2003] DSA-247 courier-ssl - missing input sanitizing
+[30 Jan 2003] DSA-247-1 courier-ssl - missing input sanitizing
{CVE-2003-0040}
[woody] - courier 0.37.3-3.3
-[29 Jan 2003] DSA-246 tomcat - information exposure, cross site scripting
+[29 Jan 2003] DSA-246-1 tomcat - information exposure, cross site scripting
{CVE-2003-0042 CVE-2003-0043 CVE-2003-0044}
[woody] - tomcat 3.3a-4woody.1
-[28 Jan 2003] DSA-245 dhcp3 - ignored counter boundary
+[28 Jan 2003] DSA-245-1 dhcp3 - ignored counter boundary
{CVE-2003-0039}
[woody] - dhcp3 3.0+3.0.1rc9-2.2
-[27 Jan 2003] DSA-244 noffle - buffer overflows
+[27 Jan 2003] DSA-244-1 noffle - buffer overflows
{CVE-2003-0037}
[woody] - noffle 1.0.1-1.1
-[24 Jan 2003] DSA-243 kdemultimedia - several vulnerabilities
+[24 Jan 2003] DSA-243-1 kdemultimedia - several vulnerabilities
{CVE-2002-1393}
[woody] - kdemultimedia 2.2.2-8.2
-[24 Jan 2003] DSA-242 kdebase - several vulnerabilities
+[24 Jan 2003] DSA-242-1 kdebase - several vulnerabilities
{CVE-2002-1393}
[woody] - kdebase 2.2.2-14.2
-[24 Jan 2003] DSA-241 kdeutils - several vulnerabilities
+[24 Jan 2003] DSA-241-1 kdeutils - several vulnerabilities
{CVE-2002-1393}
[woody] - kdeutils 2.2.2-9.2
-[23 Jan 2003] DSA-240 kdegames - several vulnerabilities
+[23 Jan 2003] DSA-240-1 kdegames - several vulnerabilities
{CVE-2002-1393}
[woody] - kdegames 2.2.2-2.2
-[23 Jan 2003] DSA-239 kdesdk - several vulnerabilities
+[23 Jan 2003] DSA-239-1 kdesdk - several vulnerabilities
{CVE-2002-1393}
[woody] - kdesdk 2.2.2-3.2
-[23 Jan 2003] DSA-238 kdepim - several vulnerabilities
+[23 Jan 2003] DSA-238-1 kdepim - several vulnerabilities
{CVE-2002-1393}
[woody] - kdepim 2.2.2-5.2
-[22 Jan 2003] DSA-237 kdenetwork - several vulnerabilities
+[22 Jan 2003] DSA-237-1 kdenetwork - several vulnerabilities
{CVE-2002-1393}
[woody] - kdenetwork 2.2.2-14.6
-[22 Jan 2003] DSA-236 kdelibs - several vulnerabilities
+[22 Jan 2003] DSA-236-1 kdelibs - several vulnerabilities
{CVE-2002-1393}
[woody] - kdelibs 2.2.2-13.woody.6
-[22 Jan 2003] DSA-235 kdegraphics - several vulnerabilities
+[22 Jan 2003] DSA-235-1 kdegraphics - several vulnerabilities
{CVE-2002-1393}
[woody] - kdegraphics 2.2.2-6.10
-[22 Jan 2003] DSA-234 kdeadmin - several vulnerabilities
+[22 Jan 2003] DSA-234-1 kdeadmin - several vulnerabilities
{CVE-2002-1393}
[woody] - kdeadmin 2.2.2-7.2
-[21 Jan 2003] DSA-233 cvs - doubly freed memory
+[21 Jan 2003] DSA-233-1 cvs - doubly freed memory
{CVE-2003-0015}
[woody] - cvs 1.11.1p1debian-8.1
-[20 Jan 2003] DSA-232 cupsys - several vulnerabilities
+[20 Jan 2003] DSA-232-1 cupsys - several vulnerabilities
{CVE-2002-1366 CVE-2002-1367 CVE-2002-1368 CVE-2002-1369 CVE-2002-1371 CVE-2002-1372 CVE-2002-1383 CVE-2002-1384}
[woody] - cupsys 1.1.14-4.3
-[17 Jan 2003] DSA-231 dhcp3 - stack overflows
+[17 Jan 2003] DSA-231-1 dhcp3 - stack overflows
{CVE-2003-0026}
[woody] - dhcp3 3.0+3.0.1rc9-2.1
-[16 Jan 2003] DSA-230 bugzilla - insecure permissions, spurious backup files
+[16 Jan 2003] DSA-230-1 bugzilla - insecure permissions, spurious backup files
{CVE-2003-0012 CVE-2003-0013}
[woody] - bugzilla 2.14.2-0woody4
-[15 Jan 2003] DSA-229 imp - SQL injection
+[15 Jan 2003] DSA-229-2 imp - SQL injection and typo
+ {CVE-2003-0025}
+ [woody] - imp 2.2.6-5.2
+[15 Jan 2003] DSA-229-1 imp - SQL injection
{CVE-2003-0025}
[woody] - imp 2.2.6-5.1
-[14 Jan 2003] DSA-228 libmcrypt - buffer overflows and memory leak
+[14 Jan 2003] DSA-228-1 libmcrypt - buffer overflows and memory leak
{CVE-2003-0031 CVE-2003-0032}
[woody] - libmcrypt 2.5.0-1woody1
-[13 Jan 2003] DSA-227 openldap2 - buffer overflows and other bugs
+[13 Jan 2003] DSA-227-1 openldap2 - buffer overflows and other bugs
{CVE-2002-1378 CVE-2002-1379 CVE-2002-1508}
[woody] - openldap2 2.0.23-6.3
-[10 Jan 2003] DSA-226 xpdf-i - integer overflow
+[10 Jan 2003] DSA-226-1 xpdf-i - integer overflow
{CVE-2002-1384}
[woody] - xpdf <not-affected> (xpdf-i is only a dummy package)
-[09 Jan 2003] DSA-225 tomcat4 - source disclosure
+[09 Jan 2003] DSA-225-1 tomcat4 - source disclosure
{CVE-2002-1394}
[woody] - tomcat4 4.0.3-3woody2
-[08 Jan 2003] DSA-224 canna - buffer overflow and more
+[08 Jan 2003] DSA-224-1 canna - buffer overflow and more
{CVE-2002-1158 CVE-2002-1159}
[woody] - canna 3.5b2-46.2
-[07 Jan 2003] DSA-223 geneweb - information exposure
+[07 Jan 2003] DSA-223-1 geneweb - information exposure
{CVE-2002-1390}
[woody] - geneweb 4.06-2
-[06 Jan 2003] DSA-222 xpdf - integer overflow
+[06 Jan 2003] DSA-222-1 xpdf - integer overflow
{CVE-2002-1384}
[woody] - xpdf 1.00-3.1
-[03 Jan 2003] DSA-221 mhonarc - cross site scripting
+[03 Jan 2003] DSA-221-1 mhonarc - cross site scripting
{CVE-2002-1388}
[woody] - mhonarc 2.5.2-1.3
-[02 Jan 2003] DSA-220 squirrelmail - cross site scripting
+[02 Jan 2003] DSA-220-1 squirrelmail - cross site scripting
{CVE-2002-1341}
[woody] - squirrelmail 1.2.6-1.3
-[31 Dec 2002] DSA-219 dhcpcd - remote command execution
+[31 Dec 2002] DSA-219-1 dhcpcd - remote command execution
{CVE-2002-1403}
NOTE: Woody doesn't have dhcpd
-[30 Dec 2002] DSA-218 bugzilla - cross site scripting
+[30 Dec 2002] DSA-218-1 bugzilla - cross site scripting
{CVE-2002-2260}
[woody] - bugzilla 2.14.2-0woody3
-[27 Dec 2002] DSA-217 typespeed - buffer overflow
+[27 Dec 2002] DSA-217-1 typespeed - buffer overflow
{CVE-2002-1389}
[woody] - typespeed 0.4.1-2.1
-[24 Dec 2002] DSA-216 fetchmail - buffer overflow
+[24 Dec 2002] DSA-216-1 fetchmail - buffer overflow
{CVE-2002-1365}
[woody] - fetchmail 5.9.11-6.2
-[23 Dec 2002] DSA-215 cyrus-imapd - buffer overflow
+[23 Dec 2002] DSA-215-1 cyrus-imapd - buffer overflow
{CVE-2002-1580}
[woody] - cyrus-imapd 1.5.19-9.1
-[20 Dec 2002] DSA-214 kdenetwork - buffer overflows
+[20 Dec 2002] DSA-214-1 kdenetwork - buffer overflows
{CVE-2002-1306}
[woody] - kdenetwork 2.2.2-14.5
-[19 Dec 2002] DSA-213 libpng - buffer overflow
+[19 Dec 2002] DSA-213-1 libpng - buffer overflow
{CVE-2002-1363}
[woody] - libpng 1.0.12-3.woody.3
[woody] - libpng3 1.2.1-1.1.woody.3
-[17 Dec 2002] DSA-212 mysql - multiple problems
+[17 Dec 2002] DSA-212-1 mysql - multiple problems
{CVE-2002-1373 CVE-2002-1374 CVE-2002-1375 CVE-2002-1376}
[woody] - mysql 3.23.49-8.2
-[13 Dec 2002] DSA-211 micq - denial of service
+[13 Dec 2002] DSA-211-1 micq - denial of service
{CVE-2002-1362}
[woody] - micq 0.4.9-0woody3
-[13 Dec 2002] DSA-210 lynx - CRLF injection
+[13 Dec 2002] DSA-210-1 lynx - CRLF injection
{CVE-2002-1405}
[woody] - lynx 2.8.3-1.1
[woody] - lynx-ssl 2.8.3.1-1.1
-[12 Dec 2002] DSA-209 wget - directory traversal
+[12 Dec 2002] DSA-209-1 wget - directory traversal
{CVE-2002-1344}
[woody] - wget 1.8.1-6.1
-[12 Dec 2002] DSA-208 perl - broken safe compartment
+[12 Dec 2002] DSA-208-1 perl - broken safe compartment
{CVE-2002-1323}
[woody] - perl 5.6.1-8.2
-[11 Dec 2002] DSA-207 tetex-bin - arbitrary command execution
+[11 Dec 2002] DSA-207-1 tetex-bin - arbitrary command execution
{CVE-2002-0836}
[woody] - tetex-bin 1.0.7+20011202-7.1
-[10 Dec 2002] DSA-206 tcpdump - denial of service
+[10 Dec 2002] DSA-206-1 tcpdump - denial of service
{CVE-2002-1350}
[woody] - tcpdump 3.6.2-2.2
-[10 Dec 2002] DSA-205 gtetrinet - buffer overflow
+[10 Dec 2002] DSA-205-1 gtetrinet - buffer overflow
[woody] - gtetrinet 0.4.1-9woody1.1
-[05 Dec 2002] DSA-204 kdelibs - arbitrary program execution
+[05 Dec 2002] DSA-204-1 kdelibs - arbitrary program execution
{CVE-2002-1281 CVE-2002-1282}
[woody] - kdelibs 2.2.2-13.woody.5
-[04 Dec 2002] DSA-203 smb2www - arbitrary command execution
+[04 Dec 2002] DSA-203-1 smb2www - arbitrary command execution
{CVE-2002-1342}
[woody] - smb2www 980804-16.1
-[03 Dec 2002] DSA-202 im - insecure temporary files
+[03 Dec 2002] DSA-202-1 im - insecure temporary files
{CVE-2002-1395}
[woody] - im 141-18.1
-[02 Dec 2002] DSA-201 freeswan - denial of service
+[02 Dec 2002] DSA-201-1 freeswan - denial of service
{CVE-2002-0666}
[woody] - freeswan 1.96-1.4
-[22 Nov 2002] DSA-200 samba - remote exploit
+[22 Nov 2002] DSA-200-1 samba - remote exploit
{CVE-2002-1318}
[woody] - samba 2.2.3a-12
-[19 Nov 2002] DSA-199 mhonarc - cross site scripting
+[19 Nov 2002] DSA-199-1 mhonarc - cross site scripting
{CVE-2002-1307}
[woody] - mhonarc 2.5.2-1.2
-[18 Nov 2002] DSA-198 nullmailer - denial of service
+[18 Nov 2002] DSA-198-1 nullmailer - denial of service
{CVE-2002-1313}
[woody] - nullmailer 1.00RC5-16.1woody2
-[15 Nov 2002] DSA-197 courier - buffer overflow
+[15 Nov 2002] DSA-197-1 courier - buffer overflow
{CVE-2002-1311}
[woody] - courier 0.37.3-2.3
-[14 Nov 2002] DSA-196 bind - several vulnerabilities
+[14 Nov 2002] DSA-196-1 bind - several vulnerabilities
{CVE-2002-0029 CVE-2002-1219 CVE-2002-1220 CVE-2002-1221}
[woody] - bind 8.3.3-2.0woody1
-[13 Nov 2002] DSA-195 apache-perl - several vulnerabilities
+[13 Nov 2002] DSA-195-1 apache-perl - several vulnerabilities
{CVE-2002-0839 CVE-2002-0840 CVE-2002-0843 CVE-2001-0131 CVE-2002-1233}
[woody] - apache-perl 1.3.26-1-1.26-0woody2
-[12 Nov 2002] DSA-194 masqmail - buffer overflows
+[12 Nov 2002] DSA-194-1 masqmail - buffer overflows
{CVE-2002-1279}
[woody] - masqmail 0.1.16-2.1
-[11 Nov 2002] DSA-193 kdenetwork - buffer overflow
+[11 Nov 2002] DSA-193-1 kdenetwork - buffer overflow
{CVE-2002-1247}
[woody] - kdenetwork 4:2.2.2-14.2
-[08 Nov 2002] DSA-192 html2ps - arbitrary code execution
+[08 Nov 2002] DSA-192-1 html2ps - arbitrary code execution
{CVE-2002-1275}
[woody] - html2ps 1.0b3-1.1
-[07 Nov 2002] DSA-191 squirrelmail - cross site scripting
+[07 Nov 2002] DSA-191-1 squirrelmail - cross site scripting
{CVE-2002-1131 CVE-2002-1132 CVE-2002-1276}
[woody] - squirrelmail 1.2.6-1.1
-[07 Nov 2002] DSA-190 wmaker - buffer overflow
+[07 Nov 2002] DSA-190-1 wmaker - buffer overflow
{CVE-2002-1277}
[woody] - wmaker 0.80.0-4.1
-[06 Nov 2002] DSA-189 luxman - local root exploit
+[06 Nov 2002] DSA-189-1 luxman - local root exploit
{CVE-2002-1245}
[woody] - luxman 0.41-17.1
-[05 Nov 2002] DSA-188 apache-ssl - several vulnerabilities
+[05 Nov 2002] DSA-188-1 apache-ssl - several vulnerabilities
{CVE-2002-0839 CVE-2002-0840 CVE-2002-0843 CVE-2001-0131 CVE-2002-1233}
[woody] - apache-ssl 1.3.26.1+1.48-0woody3
-[04 Nov 2002] DSA-187 apache - several vulnerabilities
+[04 Nov 2002] DSA-187-1 apache - several vulnerabilities
{CVE-2002-0839 CVE-2002-0840 CVE-2002-0843 CVE-2001-0131 CVE-2002-1233}
[woody] - apache 1.3.26-0woody
-[01 Nov 2002] DSA-186 log2mail - buffer overflow
+[01 Nov 2002] DSA-186-1 log2mail - buffer overflow
{CVE-2002-1251}
[woody] - log2mail 0.2.5.1
-[31 Oct 2002] DSA-185 heimdal - buffer overflow
+[31 Oct 2002] DSA-185-1 heimdal - buffer overflow
{CVE-2002-1235}
[woody] - heimdal 0.4e-7.woody.5
-[30 Oct 2002] DSA-184 krb4 - buffer overflow
+[30 Oct 2002] DSA-184-1 krb4 - buffer overflow
{CVE-2002-1235}
[woody] - krb4 1.1-8-2.2
-[29 Oct 2002] DSA-183 krb5 - buffer overflow
+[29 Oct 2002] DSA-183-1 krb5 - buffer overflow
{CVE-2002-1235}
[woody] - krb5 1.2.4-5woody3
-[28 Oct 2002] DSA-182 kdegraphics - buffer overflow
+[28 Oct 2002] DSA-182-1 kdegraphics - buffer overflow
{CVE-2002-0838}
[woody] - kdegraphics 2.2.2-6.8
-[22 Oct 2002] DSA-181 libapache-mod-ssl - cross site scripting
+[22 Oct 2002] DSA-181-1 libapache-mod-ssl - cross site scripting
{CVE-2002-1157}
[woody] - libapache-mod-ssl 2.8.9-2.1
-[21 Oct 2002] DSA-180 nis - information leak
+[21 Oct 2002] DSA-180-1 nis - information leak
{CVE-2002-1232}
[woody] - nis 3.9-6.1
-[18 Oct 2002] DSA-179 gnome-gv - buffer overflow
+[18 Oct 2002] DSA-179-1 gnome-gv - buffer overflow
{CVE-2002-0838}
[woody] - gnome-gv 1.1.96-3.1
-[17 Oct 2002] DSA-178 heimdal - remote command execution
+[17 Oct 2002] DSA-178-1 heimdal - remote command execution
{CVE-2002-1225 CVE-2002-1226}
[woody] - heimdal 0.4e-7.woody.4
-[17 Oct 2002] DSA-177 pam - serious security violation
+[17 Oct 2002] DSA-177-1 pam - serious security violation
{CVE-2002-1227}
[woody] - pam <not-affected>
[sarge] - pam <not-affected>
-[16 Oct 2002] DSA-176 gv - buffer overflow
+[16 Oct 2002] DSA-176-1 gv - buffer overflow
{CVE-2002-0838}
[woody] - gv 3.5.8-26.1
-[15 Oct 2002] DSA-175 syslog-ng - buffer overflow
+[15 Oct 2002] DSA-175-1 syslog-ng - buffer overflow
{CVE-2002-1200}
[woody] - syslog-ng 1.5.15-1.1
-[14 Oct 2002] DSA-174 heartbeat - buffer overflow
+[14 Oct 2002] DSA-174-1 heartbeat - buffer overflow
{CVE-2002-1215}
[woody] - heartbeat 0.4.9.0l-7.2
-[09 Oct 2002] DSA-173 bugzilla - privilege escalation
+[09 Oct 2002] DSA-173-1 bugzilla - privilege escalation
{CVE-2002-1196}
[woody] - bugzilla 2.14.2-0woody2
-[08 Oct 2002] DSA-172 tkmail - insecure temporary files
+[08 Oct 2002] DSA-172-1 tkmail - insecure temporary files
{CVE-2002-1193}
[woody] - tkmail 4.0beta9-8.1
-[07 Oct 2002] DSA-171 fetchmail - buffer overflows
+[07 Oct 2002] DSA-171-1 fetchmail - buffer overflows
{CVE-2002-1175 CVE-2002-1174}
[woody] - fetchmail-ssl 5.9.11-6.1
[woody] - fetchmail 5.9.11-6.1
-[04 Oct 2002] DSA-170 tomcat4 - source code disclosure
+[04 Oct 2002] DSA-170-1 tomcat4 - source code disclosure
{CVE-2002-1148}
[woody] - tomcat4 4.0.3-3woody1
-[25 Sep 2002] DSA-169 htcheck - cross site scripting
+[25 Sep 2002] DSA-169-1 htcheck - cross site scripting
{CVE-2002-1195}
[woody] - htcheck 1.1-1.1
-[18 Sep 2002] DSA-168 php - bypassing safe_mode, CRLF injection
+[18 Sep 2002] DSA-168-1 php - bypassing safe_mode, CRLF injection
{CVE-2002-0985 CVE-2002-0986}
[woody] - php3 3.0.18-23.1woody1
[woody] - php4 4.1.2-5
-[16 Sep 2002] DSA-167 kdelibs - cross site scripting
+[16 Sep 2002] DSA-167-1 kdelibs - cross site scripting
{CVE-2002-1151}
[woody] - kdelibs 4:2.2.2-13.woody.3
-[13 Sep 2002] DSA-166 purity - buffer overflows
+[13 Sep 2002] DSA-166-1 purity - buffer overflows
{CVE-2002-1124}
[woody] - purity 1-14.2
-[12 Sep 2002] DSA-165 postgresql - buffer overflows
+[12 Sep 2002] DSA-165-1 postgresql - buffer overflows
{CVE-2002-0972 CVE-2002-1398 CVE-2002-1400 CVE-2002-1401 CVE-2002-1402}
[woody] - postgresql 7.2.1-2woody2
-[10 Sep 2002] DSA-164 cacti - arbitrary code execution
+[10 Sep 2002] DSA-164-1 cacti - arbitrary code execution
{CVE-2002-1477 CVE-2002-1478}
[woody] - cacti 0.6.7-2.1
-[09 Sep 2002] DSA-163 mhonarc - cross site scripting
+[09 Sep 2002] DSA-163-1 mhonarc - cross site scripting
{CVE-2002-0738}
[woody] - mhonarc 2.5.2-1.1
-[06 Sep 2002] DSA-162 ethereal - buffer overflow
+[06 Sep 2002] DSA-162-1 ethereal - buffer overflow
{CVE-2002-0834}
[woody] - ethereal 0.9.4-1woody2
-[04 Sep 2002] DSA-161 mantis - privilege escalation
+[04 Sep 2002] DSA-161-1 mantis - privilege escalation
{CVE-2002-1115 CVE-2002-1116}
[woody] - mantis 0.17.1-2.5
-[03 Sep 2002] DSA-160 scrollkeeper - insecure temporary file creation
+[03 Sep 2002] DSA-160-1 scrollkeeper - insecure temporary file creation
{CVE-2002-0662}
[woody] - scrollkeeper 0.3.6-3.1
-[28 Aug 2002] DSA-159 python - insecure temporary files
+[28 Aug 2002] DSA-159-1 python - insecure temporary files
{CVE-2002-1119}
[woody] - python1.5 1.5.2-23.1
[woody] - python2.1 2.1.3-3.1
[woody] - python2.2 2.2.1-4.1
-[27 Aug 2002] DSA-158 gaim - arbitrary program execution
+[27 Aug 2002] DSA-158-1 gaim - arbitrary program execution
{CVE-2002-0989}
[woody] - gaim 0.58-2.2
-[23 Aug 2002] DSA-157 irssi-text - denial of service
+[23 Aug 2002] DSA-157-1 irssi-text - denial of service
{CVE-2002-0983}
[woody] - irssi-text 0.8.4-3.1
-[22 Aug 2002] DSA-156 epic4-script-light - arbitrary script execution
+[22 Aug 2002] DSA-156-1 epic4-script-light - arbitrary script execution
{CVE-2002-0984}
[woody] - epic4-script-light 2.7.30p5-1.1
-[17 Aug 2002] DSA-155 kdelibs - privacy escalation with Konqueror
+[17 Aug 2002] DSA-155-1 kdelibs - privacy escalation with Konqueror
{CVE-2002-0970}
[woody] - kdelibs 2.2.2-13.woody.2
-[15 Aug 2002] DSA-154 fam - privilege escalation
+[15 Aug 2002] DSA-154-1 fam - privilege escalation
{CVE-2002-0875}
[woody] - fam 2.6.6.1-5.2
-[14 Aug 2002] DSA-153 mantis - cross site code execution and privilege escalation
+[14 Aug 2002] DSA-153-1 mantis - cross site code execution and privilege escalation
{CVE-2002-1114 CVE-2002-1113 CVE-2002-1112 CVE-2002-1111 CVE-2002-1110}
[woody] - mantis 0.17.1-2.2
-[13 Aug 2002] DSA-152 l2tpd - missing random seed
+[13 Aug 2002] DSA-152-1 l2tpd - missing random seed
{CVE-2002-0872 CVE-2002-0873}
[woody] - l2tpd 0.67-1.1
-[13 Aug 2002] DSA-151 xinetd - pipe exposure
+[13 Aug 2002] DSA-151-1 xinetd - pipe exposure
{CVE-2002-0871}
[woody] - xinetd 1:2.3.4-1.2
-[13 Aug 2002] DSA-150 interchange - illegal file exposition
+[13 Aug 2002] DSA-150-1 interchange - illegal file exposition
{CVE-2002-0874}
[woody] - interchange 4.8.3.20020306-1.woody.1
-[13 Aug 2002] DSA-149 glibc - integer overflow
+[13 Aug 2002] DSA-149-1 glibc - integer overflow
{CVE-2002-0391}
[woody] - glibc 2.2.5-11.1
-[12 Aug 2002] DSA-148 hylafax - buffer overflows and format string vulnerabilities
+[12 Aug 2002] DSA-148-1 hylafax - buffer overflows and format string vulnerabilities
{CVE-2002-1049 CVE-2002-1050 CVE-2001-1034}
[woody] - hylafax 1:4.1.1-1.1
-[08 Aug 2002] DSA-147 mailman - cross-site scripting
+[08 Aug 2002] DSA-147-1 mailman - cross-site scripting
{CVE-2002-0388 CVE-2002-0855}
[woody] - mailman 2.0.11-1woody4
-[08 Aug 2002] DSA-146 dietlibc - integer overflow
+[08 Aug 2002] DSA-146-1 dietlibc - integer overflow
{CVE-2002-0391}
[woody] - dietlibc 0.12-2.4
-[07 Aug 2002] DSA-145 tinyproxy - doubly freed memory
+[07 Aug 2002] DSA-145-1 tinyproxy - doubly freed memory
{CVE-2002-0847}
[woody] - tinyproxy 1.4.3-2woody2
-[06 Aug 2002] DSA-144 wwwoffle - improper input handling
+[06 Aug 2002] DSA-144-1 wwwoffle - improper input handling
{CVE-2002-0818}
[woody] - wwwoffle 2.7a-1.2
-[05 Aug 2002] DSA-143 krb5 - integer overflow
+[05 Aug 2002] DSA-143-1 krb5 - integer overflow
{CVE-2002-0391}
[woody] - krb5 1.2.4-5woody1
-[05 Aug 2002] DSA-142 openafs - integer overflow
+[05 Aug 2002] DSA-142-1 openafs - integer overflow
{CVE-2002-0391}
[woody] - openafs 1.2.3final2-6
-[01 Aug 2002] DSA-141 mpack - buffer overflow
+[01 Aug 2002] DSA-141-1 mpack - buffer overflow
{CVE-2002-1425}
[woody] - mpack 1.5-7woody2
-[05 Aug 2002] DSA-140 libpng - buffer overflow
+[05 Aug 2002] DSA-140-1 libpng - buffer overflow
{CVE-2002-0660 CVE-2002-0728}
[woody] - libpng 1.0.12-3.woody.2
[woody] - libpng3 1.2.1-1.1.woody.2
-[01 Aug 2002] DSA-139 super - format string vulnerability
+[01 Aug 2002] DSA-139-1 super - format string vulnerability
{CVE-2002-0817}
[woody] - super 3.16.1-1.2
-[01 Aug 2002] DSA-138 gallery - remote exploit
+[01 Aug 2002] DSA-138-1 gallery - remote exploit
{CVE-2002-1412}
[woody] - gallery 1.2.5-7
-[30 Jul 2002] DSA-137 mm - insecure temporary files
+[30 Jul 2002] DSA-137-1 mm - insecure temporary files
{CVE-2002-0658}
[woody] - mm 1.1.3-6.1
-[30 Jul 2002] DSA-136 openssl - multiple remote exploits
+[30 Jul 2002] DSA-136-1 openssl - multiple remote exploits
{CVE-2002-0655 CVE-2002-0656 CVE-2002-0657 CVE-2002-0659}
[woody] - openssl094 0.9.4-6.woody.2
[woody] - openssl095 0.9.5a-6.woody.1
[woody] - openssl 0.9.6c-2.woody.1
-[02 Jul 2002] DSA-135 libapache-mod-ssl -- buffer overflow / DoS
+[02 Jul 2002] DSA-135-1 libapache-mod-ssl -- buffer overflow / DoS
{CVE-2002-0653}
[woody] - libapache-mod-ssl 2.8.9-2
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/399b89b12239903e552fd05117a377b25acf86b0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/399b89b12239903e552fd05117a377b25acf86b0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250709/afb0ab6b/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list