Author: micah
Date: 2006-02-17 20:19:47 +0000 (Fri, 17 Feb 2006)
New Revision: 3505
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-978-1 gnupg added
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-02-17 20:10:49 UTC (rev 3504)
+++ data/CVE/list 2006-02-17 20:19:47 UTC (rev 3505)
@@ -719,7 +719,10 @@
CVE-2006-0456
RESERVED
CVE-2006-0455 (gpgv in GnuPG 1.4.x before 1.4.2.1, when using unattended
signature ...)
+ {DSA-978-1}
- gnupg <unfixed> (bug #353017; medium)
+ [woody] - gnupg 1.0.6-4woody4
+ [sarge] - gnupg 1.4.1-1sarge1
NOTE: http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000211.html
indicates that
NOTE: *all* versions are affected because gpg --verify is also affected
CVE-2006-0454 (Linux kernel before 2.6.15.3 down to 2.6.12, while constructing
an ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2006-02-17 20:10:49 UTC (rev 3504)
+++ data/DSA/list 2006-02-17 20:19:47 UTC (rev 3505)
@@ -1,3 +1,8 @@
+[17 Feb 2006] DSA-978-1 gnupg - invalid success return
+ {CVE-2006-0455}
+ [woody] - gnupg 1.0.6-4woody4
+ [sarge] - gnupg 1.4.1-1sarge1
+ NOTE: not fixed in sid at the time of DSA
[16 Feb 2006] DSA-977-1 heimdal - several
{CVE-2006-0582 CVE-2006-0677}
[woody] - heimdal <not-affected>