Moritz Muehlenhoff
2005-Nov-09 11:27 UTC
[Secure-testing-commits] r2699 - in data: CVE DSA
Author: jmm-guest
Date: 2005-11-09 11:27:16 +0000 (Wed, 09 Nov 2005)
New Revision: 2699
Modified:
data/CVE/list
data/DSA/list
Log:
two new DSAs
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-11-09 09:14:19 UTC (rev 2698)
+++ data/CVE/list 2005-11-09 11:27:16 UTC (rev 2699)
@@ -3,7 +3,7 @@
CVE-2005-XXXX [webcalendar''s password visible to local users through
debconf]
- webcalendar <unfixed> (bug #337624)
CVE-2005-3523 [Format string vulnerability in gpsdrive]
- - gpsdrive <unfixed> (bug #337495; medium)
+ - gpsdrive 2.0.9-2sarge1 (bug #337495; medium)
CVE-2005-XXXX [Insecure temp files in note]
- note 1.3.1-3 (bug #337492; low)
CVE-2005-3500 [clamav: DoS in CAB parsing]
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-11-09 09:14:19 UTC (rev 2698)
+++ data/DSA/list 2005-11-09 11:27:16 UTC (rev 2699)
@@ -1,3 +1,12 @@
+[09 Nov 2005] DSA-891-1 gpsdrive - format string
+ {CVE-2005-3523}
+ [sarge] - gpsdrive 2.0.9-2sarge1
+ NOTE: not fixed in testing at time of DSA (DSA fix propagated to sid)
+[09 Nov 2005] DSA-890-1 libungif4 - several
+ {CVE-2005-2974 CVE-2005-3350}
+ [woody] - libungif4 4.1.0b1-2woody1
+ [sarge] - libungif4 4.1.3-2sarge1
+ NOTE: not fixed in testing at time of DSA (unfixed in sid)
[08 Nov 2005] DSA-889-1 enigmail - programming error
{CVE-2005-3256}
[sarge] - enigmail 0.91-4sarge2