Moritz Muehlenhoff
2006-Mar-16 22:19 UTC
[Secure-testing-commits] r3632 - in data: CVE DSA
Author: jmm-guest
Date: 2006-03-16 22:18:54 +0000 (Thu, 16 Mar 2006)
New Revision: 3632
Modified:
data/CVE/list
data/DSA/list
Log:
two new DSAs
xsupplicant was mis-assigned
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-03-16 21:14:22 UTC (rev 3631)
+++ data/CVE/list 2006-03-16 22:18:54 UTC (rev 3632)
@@ -1,3 +1,5 @@
+CVE-2005-XXXX [xsupplicant information leak]
+ - xsupplicant 1.0.1-5 (bug #317703; low)
CVE-2006-XXXX [Multiple issues in libcgi-session-perl]
- libcgi-session-perl 4.07-1
CVE-2006-1244 (Unspecified vulnerability in certain versions of xpdf after
3.00, as ...)
@@ -9573,7 +9575,6 @@
NOTE: see CVE-2005-2356
CVE-2005-2347
RESERVED
- - xsupplicant 1.0.1-5 (bug #317703; low)
CVE-2005-2346 (Buffer overflow in Novell GroupWise 6.5 Client allows remote
attackers ...)
NOT-FOR-US: Novell
CVE-2005-2345
Modified: data/DSA/list
==================================================================---
data/DSA/list 2006-03-16 21:14:22 UTC (rev 3631)
+++ data/DSA/list 2006-03-16 22:18:54 UTC (rev 3632)
@@ -1,3 +1,12 @@
+[16 Mar 2006] DSA-1006-1 wzdftpd - missing input sanitising
+ {CVE-2005-3081}
+ [sarge] - wzdftpd 0.5.2-1.1sarge1
+ NOTE: fixed in testing at the time of DSA
+[16 Mar 2006] DSA-1005-1 xine-lib - buffer overflow
+ {CVE-2005-4048}
+ [woody] - xine-lib <not-affected>
+ [sarge] - xine-lib 1.0.1-1sarge2
+ NOTE: fixed in testing at the time of DSA
[16 Mar 2006] DSA-1004-1 vlc - buffer overflow
{CVE-2005-4048}
[woody] - vlc <not-affected>