white at alioth.debian.org
2008-Dec-11 09:30 UTC
[Secure-testing-commits] r10675 - in data: CVE DSA
Author: white
Date: 2008-12-11 09:30:08 +0000 (Thu, 11 Dec 2008)
New Revision: 10675
Modified:
data/CVE/list
data/DSA/list
Log:
Fix etch entry, which should be created by a DSA entry :)
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-12-11 09:14:12 UTC (rev 10674)
+++ data/CVE/list 2008-12-11 09:30:08 UTC (rev 10675)
@@ -224,10 +224,8 @@
- tikiwiki <removed>
CVE-2008-5317 (Integer signedness error in the cmsAllocGamma function in ...)
- lcms 1.17-1
- [etch] - lcms 1.15-1.1+etch1
CVE-2008-5316 (Buffer overflow in the ReadEmbeddedTextTag function in
src/cmsio1.c in ...)
- lcms 1.16-1
- [etch] - lcms 1.15-1.1+etch1
CVE-2008-5315 (Directory traversal vulnerability in the web interface in Apple
iPhone ...)
NOT-FOR-US: Apple iPhone Configuration Web Utility
CVE-2008-XXXX [multiple insecure tempfiles usage issues in devscripts]
Modified: data/DSA/list
==================================================================---
data/DSA/list 2008-12-11 09:14:12 UTC (rev 10674)
+++ data/DSA/list 2008-12-11 09:30:08 UTC (rev 10675)
@@ -1,3 +1,6 @@
+[10 Dec 2008] DSA-1684-1 lcms - multiple vulnerabilities
+ {CVE-2008-5316 CVE-2008-5317}
+ [etch] - lcms 1.14-1.1+etch1
[08 Dec 2008] DSA-1683-1 streamripper - potential code execution
{CVE-2007-4337 CVE-2008-4829}
[etch] - streamripper 1.61.27-1+etch1