Moritz Muehlenhoff
2005-Nov-22 22:10 UTC
[Secure-testing-commits] r2833 - in data: CVE DSA
Author: jmm-guest
Date: 2005-11-22 22:10:10 +0000 (Tue, 22 Nov 2005)
New Revision: 2833
Modified:
data/CVE/list
data/DSA/list
Log:
another fetchmail dsa update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-11-22 22:06:59 UTC (rev 2832)
+++ data/CVE/list 2005-11-22 22:10:10 UTC (rev 2833)
@@ -2001,7 +2001,7 @@
CVE-2005-3089 (Firefox 1.0.6 allows attackers to cause a denial of service
(crash) ...)
TODO: file a bug, it''s not really clear, whether this has security
implications
CVE-2005-3088 (fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2
...)
- {DSA-900-2}
+ {DSA-900-3}
- fetchmail 6.2.5.4-1 (bug #336096; low)
CVE-2005-3111 (The handler code for backupninja 0.8 and earlier creates
temporary ...)
{DSA-827-1}
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-11-22 22:06:59 UTC (rev 2832)
+++ data/DSA/list 2005-11-22 22:10:10 UTC (rev 2833)
@@ -21,11 +21,12 @@
{CVE-2005-3349 CVE-2005-3355}
[sarge] - gnump3d 2.9.3-1sarge3
NOTE: not fixed in testing at time of DSA (unfixed in sid)
-[18 Nov 2005] DSA-900-2 fetchmail - programming error
+[22 Nov 2005] DSA-900-3 fetchmail - programming error
{CVE-2005-3088}
[woody] - fetchmail 5.9.11-6.4
+ [woody] - fetchmail-ssl 5.9.11-6.3
[sarge] - fetchmail 6.2.5-12sarge3
- NOTE: Original Woody fix had regressions
+ NOTE: Original two Woody fixes had regressions
NOTE: not fixed in testing at time of DSA (too young 2/2)
[17 Nov 2005] DSA-899-1 egroupware - programming errors
{CVE-2005-0870 CVE-2005-2600 CVE-2005-3347 CVE-2005-3348}