jmm-guest at alioth.debian.org
2007-Oct-10 09:06 UTC
[Secure-testing-commits] r6888 - in data: CVE DSA
Author: jmm-guest
Date: 2007-10-10 09:06:47 +0000 (Wed, 10 Oct 2007)
New Revision: 6888
Modified:
data/CVE/list
data/DSA/list
Log:
- xfs DSA
- *sigh* security information vendor insisted on having a second
CVE for xfs
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-10-10 08:34:05 UTC (rev 6887)
+++ data/CVE/list 2007-10-10 09:06:47 UTC (rev 6888)
@@ -396,6 +396,7 @@
- guilt 0.27-1.2 (medium; bug #445308)
CVE-2007-5193 (The default configuration for twiki 4.1.2 on Debian GNU/Linux,
and ...)
- twiki <unfixed> (bug #444982; low)
+ [etch] - twiki <no-dsa> (Minor packaging flaw, doesn''t warrant
an update)
CVE-2007-5172 (Quicksilver Forums before 1.4.1 allows remote attackers to
obtain ...)
NOT-FOR-US: Quicksilver Forums
CVE-2007-5171 (Unspecified vulnerability in Quicksilver Forums before 1.4.1
allows ...)
@@ -807,7 +808,7 @@
CVE-2007-4991 (The SOCKS4 Proxy in Microsoft Internet Security and Acceleration
(ISA) ...)
NOT-FOR-US: Microsoft Internet Security and Acceleration
CVE-2007-4990 (The swap_char2b function in X.Org X Font Server (xfs) before
1.0.5 ...)
- TODO: check
+ - xfs 1:1.0.5-1
CVE-2007-4989
REJECTED
CVE-2007-4988 (Sign extension error in the ReadDIBImage function in ImageMagick
...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2007-10-10 08:34:05 UTC (rev 6887)
+++ data/DSA/list 2007-10-10 09:06:47 UTC (rev 6888)
@@ -1,3 +1,7 @@
+[08 Oct 2007] DSA-1385-1 xfs
+ {CVE-2007-4568 CVE-2007-4990}
+ [etch] - xfs 1.0.1-7
+ [sarge] - xfree86 4.3.0.dfsg.1-14sarge5
[05 Oct 2007] DSA-1384-1 xen-3.0
{CVE-2007-4993 CVE-2007-1320}
[etch] - xen-3.0 3.0.3-0-3