Moritz Muehlenhoff
2005-Sep-01 14:36 UTC
[Secure-testing-commits] r1758 - in data: . CAN DSA
Author: jmm-guest
Date: 2005-09-01 14:36:12 +0000 (Thu, 01 Sep 2005)
New Revision: 1758
Modified:
data/CAN/list
data/DSA/list
data/embedded-code-copies
Log:
update on embedded copies
new firefox dsa.
joeyh: the firefox dtsa should probably be reverted and based on 1.0.6
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-09-01 13:25:58 UTC (rev 1757)
+++ data/CAN/list 2005-09-01 14:36:12 UTC (rev 1758)
@@ -9158,7 +9158,6 @@
NOTE: not-for-us (ArGoSoft Mail Server)
CAN-2005-0366 (The integrity check feature in OpenPGP, when handling a message
that ...)
- gnupg 1.4.1-1
- NOTE: vorlon approved new upstream release to testing
CAN-2005-0364 (Unknown vulnerability in BIND 9.2.0 in HP-UX B.11.00, B.11.11,
and ...)
NOTE: not-for-us (bind on hp-ux)
CAN-2005-0361
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-09-01 13:25:58 UTC (rev 1757)
+++ data/DSA/list 2005-09-01 14:36:12 UTC (rev 1758)
@@ -1,3 +1,9 @@
+[21 Aug 2005] DSA-779-2 mozilla-firefox - several
+ NOTE: Essentially 1.0.6 with rolled-back version number, backported version
had regressions
+ {CAN-2005-2260 CAN-2005-2261 CAN-2005-2262 CAN-2005-2263 CAN-2005-2264
CAN-2005-2265 CAN-2005-2266 CAN-2005-2267 CAN-2005-2268 CAN-2005-2269
CAN-2005-2270}
+ - mozilla-firefox 1.0.6-1 (medium)
+ NOTE: not fixed in testing at time of DSA (waiting on dependencies)
+ NOTE: Fixed in DTSA, which will have the same regressions, should be
checked/reverted
[01 Sep 2005] DSA-793-1 courier - missing input sanitising
{CAN-2005-2724}
- courier 0.47-8 (medium)
Modified: data/embedded-code-copies
==================================================================---
data/embedded-code-copies 2005-09-01 13:25:58 UTC (rev 1757)
+++ data/embedded-code-copies 2005-09-01 14:36:12 UTC (rev 1758)
@@ -78,3 +78,8 @@
gnumeric(?)
python
php4 (src included, but Debian package links dynamically)
+
+
+tiff:
+wxpythongtk (check, which debian pkg this is in)
+older kdegraphics/kpdf releases < 3.3 embedded a copy