nion at alioth.debian.org
2008-Jan-11 15:37 UTC
[Secure-testing-commits] r7880 - in data: CVE NMU
Author: nion
Date: 2008-01-11 15:37:02 +0000 (Fri, 11 Jan 2008)
New Revision: 7880
Modified:
data/CVE/list
data/NMU/list
Log:
latest vlc security issues fixed in 0.8.6.c-4.1
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-01-11 13:42:19 UTC (rev 7879)
+++ data/CVE/list 2008-01-11 15:37:02 UTC (rev 7880)
@@ -516,20 +516,18 @@
NOT-FOR-US: Blakord Portal
CVE-2007-6611 (Cross-site scripting (XSS) vulnerability in view.php in Mantis
before ...)
- mantis 1.0.8-4 (low; bug #458377)
-CVE-2007-XXXX [vlc mozilla plugin arbitrary file overwrite vulnerability]
- - vlc <unfixed> (high; bug #458318)
+CVE-2007-XXXX [vlc arbitrary file overwrite vulnerability via crafted m3u
playlists]
+ - vlc 0.8.6.c-4.1 (medium; bug #458318)
NOTE: see https://trac.videolan.org/vlc/ticket/1371
CVE-2007-XXXX [vlc format string vulnerability in built-in web-server]
- - vlc <unfixed> (bug #458318)
+ - vlc 0.8.6.c-4.1 (medium; bug #458318)
NOTE: see http://www.securityfocus.com/archive/1/485488/30/0/threaded
CVE-2007-XXXX [vlc buffer overflow in subtitle handling]
- - vlc <unfixed> (low; bug #458318)
+ - vlc 0.8.6.c-4.1 (low; bug #458318)
NOTE: see http://www.securityfocus.com/archive/1/485488/30/0/threaded
CVE-2007-XXXX [vlc remote denial of service in rtsp module]
- - vlc <unfixed> (unimportant; bug #458318)
+ - vlc 0.8.6.c-4.1 (unimportant; bug #458318)
NOTE: That''s hardly a security problem, just a bug
-CVE-2007-XXXX [vlc insecure handling of vlcopt]
- - vlc <unfixed> (medium; bug #458318)
CVE-2007-6598 (Dovecot before 1.0.10, with certain configuration options
including ...)
{DSA-1457-1}
- dovecot 1:1.0.10-1 (low; bug #458315)
Modified: data/NMU/list
==================================================================---
data/NMU/list 2008-01-11 13:42:19 UTC (rev 7879)
+++ data/NMU/list 2008-01-11 15:37:02 UTC (rev 7880)
@@ -63,3 +63,4 @@
2007-12-21 libexif 0.6.16-2.1
2007-12-25 tcpreen 1.4.3-0.3
2007-01-06 exiftags 1.01-0.1
+2007-01-11 vlc 0.8.6.c-4.1