thijs at alioth.debian.org
2008-Feb-25 18:52 UTC
[Secure-testing-commits] r8215 - in data: CVE DSA
Author: thijs
Date: 2008-02-25 18:52:50 +0000 (Mon, 25 Feb 2008)
New Revision: 8215
Modified:
data/CVE/list
data/DSA/list
Log:
diatheke CVEified, DSA-1508-1 released
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-02-25 13:40:43 UTC (rev 8214)
+++ data/CVE/list 2008-02-25 18:52:50 UTC (rev 8215)
@@ -55,9 +55,9 @@
- moin 1.5.8-5.1
CVE-2008-0780 (Cross-site scripting (XSS) vulnerability in MoinMoin 1.5.x
through ...)
- moin 1.5.8-5.1
-CVE-2008-XXXX [diatheke remote command execution]
+CVE-2008-0932 [diatheke remote command execution]
- sword 1.5.9-8 (high; bug #466449)
- NOTE: CVE ID requested
+ NOTE: source package named sword, binary package named diatheke
CVE-2008-0806 [insecure temp file in wyrd]
- wyrd 1.4.3b-4 (low; bug #466382)
CVE-2008-XXXX [am-utils insecure temp file /tmp/expn$$ ]
Modified: data/DSA/list
==================================================================---
data/DSA/list 2008-02-25 13:40:43 UTC (rev 8214)
+++ data/DSA/list 2008-02-25 18:52:50 UTC (rev 8215)
@@ -1,3 +1,7 @@
+[25 Feb 2008] DSA-1508-1 sword - arbirary shell command execution
+ {CVE-2008-0932}
+ [sarge] - sword 1.5.7-7sarge1
+ [etch] - sword 1.5.9-2etch1
[24 Feb 2008] DSA-1507-1 turba2
{CVE-2008-0807}
[sarge] - turba2 2.0.2-1sarge1