joeyh at alioth.debian.org
2008-Feb-11 09:14 UTC
[Secure-testing-commits] r8129 - data/CVE
Author: joeyh
Date: 2008-02-11 09:14:10 +0000 (Mon, 11 Feb 2008)
New Revision: 8129
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-02-10 21:49:52 UTC (rev 8128)
+++ data/CVE/list 2008-02-11 09:14:10 UTC (rev 8129)
@@ -317,6 +317,7 @@
- tk8.3 8.3.5-12
CVE-2008-0554 [buffer overflow in netpbm GIF handling]
RESERVED
+ {DSA-1493-1}
- netpbm-free 10.0-11.1 (medium; bug #464056)
CVE-2008-0564 (Multiple cross-site scripting (XSS) vulnerabilities in Mailman
before ...)
- mailman <unfixed> (low)
@@ -328,9 +329,11 @@
NOTE: This enhances the fix for CVE-2006-3636.
NOTE:
http://mail.python.org/pipermail/mailman-announce/2008-February/000095.html
CVE-2008-0665 [insecure tmp file usage in ipp backend in webwml]
+ {DSA-1492-1}
- wml 2.0.11-3.1 (low; bug #463907)
[sarge] - wml <not-affected> (Vulnerable code is patched to use mkdtemp)
CVE-2008-0666 [insecure tmp file usage wmg.cgi and eperl backend in webwml]
+ {DSA-1492-1}
- wml 2.0.11-3.1 (low; bug #463907)
[sarge] - wml <not-affected> (Vulnerable code is patched to use mkdtemp)
CVE-2008-XXXX [deluge-torrent unspecified remote issue]
@@ -578,6 +581,7 @@
CVE-2008-0544 (Heap-based buffer overflow in the IMG_LoadLBM_RW function in
IMG_lbm.c ...)
- sdl-image1.2 1.2.6-3 (medium)
CVE-2007-6697 (Buffer overflow in the LWZReadByte function in IMG_gif.c in
SDL_image ...)
+ {DSA-1493-1}
- sdl-image1.2 1.2.6-2 (medium)
CVE-2008-0410 (HTTP File Server (HFS) before 2.2c allows remote attackers to
obtain ...)
NOT-FOR-US: HTTP File Server