Moritz Muehlenhoff
2005-Nov-05 00:30 UTC
[Secure-testing-commits] r2668 - in data: CVE DSA
Author: jmm-guest
Date: 2005-11-05 00:29:44 +0000 (Sat, 05 Nov 2005)
New Revision: 2668
Modified:
data/CVE/list
data/DSA/list
Log:
new thttpd dsa
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-11-04 23:50:44 UTC (rev 2667)
+++ data/CVE/list 2005-11-05 00:29:44 UTC (rev 2668)
@@ -935,8 +935,9 @@
RESERVED
CVE-2005-3125
RESERVED
-CVE-2005-3124
+CVE-2005-3124 [Insecure temp file in thttpd]
RESERVED
+ - thttpd 2.23beta1-4
CVE-2005-3123 (Directory traversal vulnerability in GNUMP3D before 2.9.6 allows
...)
{DSA-877-1}
- gnump3d 2.9.6-1 (medium)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-11-04 23:50:44 UTC (rev 2667)
+++ data/DSA/list 2005-11-05 00:29:44 UTC (rev 2668)
@@ -1,3 +1,8 @@
+[04 Nov 2005] DSA-883-1 thttpd - insecure temporary file
+ {CVE-2005-3124}
+ [woody] - thttpd 2.21b-11.3
+ [sarge] - thttpd 2.23beta1-3sarge1
+ NOTE: fixed in testing at time of DSA (not present in testing/sid anymore)
[04 Nov 2005] DSA-882-1 openssl095 - cryptographic weakness
{CVE-2005-2969}
[woody] - openssl095 0.9.5a-6.woody.6