fw at alioth.debian.org
2007-Sep-25 20:31 UTC
[Secure-testing-commits] r6705 - in data: CVE DSA
Author: fw
Date: 2007-09-25 20:31:42 +0000 (Tue, 25 Sep 2007)
New Revision: 6705
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-1343-2: file
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-09-25 18:25:24 UTC (rev 6704)
+++ data/CVE/list 2007-09-25 20:31:42 UTC (rev 6705)
@@ -7032,7 +7032,7 @@
NOTE: Unrealistic attack vector, no evidence code injection is possible
CVE-2007-2026 (The gnu regular expression code in file 4.20 allows
context-dependent ...)
- file 4.20-6 (low)
- [etch] - file <no-dsa> (Hardly any security impact)
+ [etch] - file 4.17-5etch3
[sarge] - file <not-affected> (version too old)
CVE-2007-2025 (Unrestricted file upload vulnerability in the UpLoad feature
...)
{DSA-1371-1}
Modified: data/DSA/list
==================================================================---
data/DSA/list 2007-09-25 18:25:24 UTC (rev 6704)
+++ data/DSA/list 2007-09-25 20:31:42 UTC (rev 6705)
@@ -1,3 +1,6 @@
+[02 Aug 2007] DSA-1343-2 file
+ {CVE-2007-2799}
+ [etch] - file 4.17-5etch3
[21 Sep 2007] DSA-1377-2 fetchmail - null pointer dereference
{CVE-2007-4565}
[etch] - fetchmail 6.3.6-1etch1