Author: jmm-guest
Date: 2006-01-12 11:49:17 +0000 (Thu, 12 Jan 2006)
New Revision: 3277
Modified:
data/DSA/list
Log:
new tetex DSA
update on unzip DSA
Modified: data/DSA/list
==================================================================---
data/DSA/list 2006-01-12 11:12:03 UTC (rev 3276)
+++ data/DSA/list 2006-01-12 11:49:17 UTC (rev 3277)
@@ -1,3 +1,8 @@
+[12 Jan 2006] DSA-937-1 tetex-bin - buffer overflows
+ {CVE-2005-3191 CVE-2005-3192 CVE-2005-3193 CVE-2005-3624 CVE-2005-3625
CVE-2005-3626 CVE-2005-3627 CVE-2005-3628}
+ [sarge] - tetex-bin 2.0.2-30sarge4
+ [woody] - tetex-bin 1.0.7+20011202-7.7
+ NOTE: Not fixed in testing at time of DSA (waiting on dep)
[11 Jan 2006] DSA-936-1 libextractor - buffer overflows
{CVE-2005-2097 CVE-2005-3191 CVE-2005-3192 CVE-2005-3193 CVE-2005-3624
CVE-2005-3625 CVE-2005-3626 CVE-2005-3627 CVE-2005-3628}
[sarge] - libextractor 0.4.2-2sarge2
@@ -158,9 +163,10 @@
NOTE: not fixed in testing at time of DSA (unfixed in sid)
[21 Nov 2005] DSA-903-1 unzip - race condition
{CVE-2005-2475}
- [woody] - unzip 5.50-1woody4
- [sarge] - unzip 5.52-1sarge2
+ [woody] - unzip 5.50-1woody5
+ [sarge] - unzip 5.52-1sarge3
NOTE: fixed in testing at time of DSA
+ NOTE: Original 903-1 DSA had a regression
[21 Nov 2005] DSA-902-1 xmail - buffer overflow
{CVE-2005-2943}
[sarge] - xmail 1.21-3sarge1