Author: derevko-guest Date: 2009-07-06 13:36:58 +0000 (Mon, 06 Jul 2009) New Revision: 12292 Modified: data/ospu-candidates.txt data/spu-candidates.txt Log: spu and ospu notifications Modified: data/ospu-candidates.txt ==================================================================--- data/ospu-candidates.txt 2009-07-06 11:34:31 UTC (rev 12291) +++ data/ospu-candidates.txt 2009-07-06 13:36:58 UTC (rev 12292) @@ -93,6 +93,7 @@ notified maintainer bugzilla (CVE-2009-0481 to CVE-2009-0485) +notified maintainer -- @@ -317,21 +318,25 @@ -- -libpng (CVE-2009-2042) -#533676 - --- - libsamplerate (CVE-2008-5008) https://bugzilla.redhat.com/attachment.cgi?id=323069 notified maintainer -- +libsndfile +potential dos via crafted input +#530831 +-- + libpng (CVE-2008-1382) #476669 notified maintainer +libpng (CVE-2009-2042) +#533676 +notified maintainer + -- libvorbis (CVE-2008-2009) @@ -401,6 +406,12 @@ -- +mimedecode +potential dos/crash due to invalid input +#530430 + +-- + mksh (CVE-2008-1845) notified maintainer @@ -669,12 +680,6 @@ -- -xmcd (CVE-2008-4994) -#496416 -notified maintainer - --- - vobcopy (CVE-2007-5718) bug #448319 notified maintainer @@ -711,6 +716,13 @@ -- +xcftools (CVE-2009-2175) +#533361 +orphaned +Jan Hauke Rahm will prepare a package for stable and oldstable (#533361) + +-- + xchat (CVE-2009-0315) #513509 notified maintainer @@ -744,6 +756,12 @@ -- +xmcd (CVE-2008-4994) +#496416 +notified maintainer + +-- + zabbix (CVE-2008-1353) bug #471678 notified maintainer Modified: data/spu-candidates.txt ==================================================================--- data/spu-candidates.txt 2009-07-06 11:34:31 UTC (rev 12291) +++ data/spu-candidates.txt 2009-07-06 13:36:58 UTC (rev 12292) @@ -43,11 +43,6 @@ -- -lcms (CVE-2009-0793) -notified maintainer through initial bugreport - --- - kfreebsd-6 [freebsd Missing permission check on SIOCSIFINFO_IN6 ioctl] http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc @@ -76,16 +71,34 @@ -- +lcms (CVE-2009-0793) +notified maintainer through initial bugreport + +-- + libpng (CVE-2009-2042) #533676 +notified maintainer -- +libsndfile +potential dos via crafted input +#530831 + +-- + libvorbis (CVE-2008-2009) notified maintainer and release team -- +mimedecode +potential dos/crash due to invalid input +#530430 + +-- + mpg123 (CVE-2009-1301) notified maintainer @@ -150,6 +163,13 @@ -- +xcftools (CVE-2009-2175) +#533361 +orphaned +Jan Hauke Rahm will prepare a package for stable and oldstable (#533361) + +-- + xemacs21 (CVE-2008-2142) bug #480877 notified maintainer