thijs at alioth.debian.org
2008-Mar-29 18:30 UTC
[Secure-testing-commits] r8444 - in data: CVE DSA
Author: thijs
Date: 2008-03-29 18:30:05 +0000 (Sat, 29 Mar 2008)
New Revision: 8444
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-1531-2 policyd-weight
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-03-29 15:49:44 UTC (rev 8443)
+++ data/CVE/list 2008-03-29 18:30:05 UTC (rev 8444)
@@ -93,7 +93,7 @@
TODO: check
CVE-2008-XXXX [policyd-weight tempfile race]
- policyd-weight <unfixed> (low)
- [etch] - policyd-weight 0.1.14-beta-6etch1
+ [etch] - policyd-weight 0.1.14-beta-6etch2
NOTE:
http://www.mail-archive.com/policyd-weight-list%40ek-muc.de/msg00798.html
NOTE: CVE id pending
CVE-2008-1489 (Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c
for VLC ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2008-03-29 15:49:44 UTC (rev 8443)
+++ data/DSA/list 2008-03-29 18:30:05 UTC (rev 8444)
@@ -4,8 +4,8 @@
[27 Mar 2008] DSA-1532-1 xulrunner
{CVE-2007-4879 CVE-2008-1233 CVE-2008-1234 CVE-2008-1235 CVE-2008-1236
CVE-2008-1237 CVE-2008-1238 CVE-2008-1240 CVE-2008-1241}
[etch] - xulrunner 1.8.0.15~pre080323b-0etch1
-[27 Mar 2008] DSA-1531-1 policyd-weight - insecure temporary files
- [etch] - policyd-weight 0.1.14-beta-6etch1
+[27 Mar 2008] DSA-1531-2 policyd-weight - insecure temporary files
+ [etch] - policyd-weight 0.1.14-beta-6etch2
NOTE: CVE id still pending...
[25 Mar 2008] DSA-1530-1 cupsys - multiple vulnerabilities
{CVE-2008-0047 CVE-2008-0882}