Moritz Muehlenhoff
2005-Nov-08 09:07 UTC
[Secure-testing-commits] r2690 - in data: CVE DSA
Author: jmm-guest
Date: 2005-11-08 09:07:23 +0000 (Tue, 08 Nov 2005)
New Revision: 2690
Modified:
data/CVE/list
data/DSA/list
Log:
three new DSAs
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-11-08 01:11:05 UTC (rev 2689)
+++ data/CVE/list 2005-11-08 09:07:23 UTC (rev 2690)
@@ -661,7 +661,7 @@
- libmad <unfixed> (bug #287519; low)
- mad <removed>
CVE-2005-3256 (The key selection dialogue in Enigmail before 0.92.1 can
incorrectly ...)
- - enigmail 2:0.93-1 (low)
+ - enigmail 2:0.93-1 (medium)
CVE-2005-3253
RESERVED
CVE-2005-3252 (Stack-based buffer overflow in the Back Orifice (BO)
preprocessor for ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-11-08 01:11:05 UTC (rev 2689)
+++ data/DSA/list 2005-11-08 09:07:23 UTC (rev 2690)
@@ -1,3 +1,16 @@
+[08 Nov 2005] DSA-889-1 enigmail - programming error
+ {CVE-2005-3256}
+ [sarge] - enigmail 0.91-4sarge2
+ NOTE: fixed in testing at time of DSA
+[07 Nov 2005] DSA-888-1 openssl - cryptographic weakness
+ {CVE-2005-2969}
+ [woody] - openssl 0.9.6c-2.woody.8
+ [sarge] - openssl 0.9.7e-3sarge1
+ NOTE: fixed in testing at time of DSA
+[07 Nov 2005] DSA-887-1 clamav - several
+ {CVE-2005-3239 CVE-2005-3303 CVE-2005-3500 CVE-2005-3501}
+ [sarge] - clamav 0.84-2.sarge.6
+ NOTE: fixed in testing at time of DSA (unfixed in sid; DTSA issued)
[07 Nov 2005] DSA-886-1 chmlib - several
{CVE-2005-2659 CVE-2005-2930 CVE-2005-3318}
[sarge] - chmlib 0.35-6sarge1