Secure testing commits - Apr 2008 - r8469 - in data: CVE DTSA NMU

Author: nion
Date: 2008-04-02 12:19:34 +0000 (Wed, 02 Apr 2008)
New Revision: 8469

Modified:
   data/CVE/list
   data/DTSA/list
   data/NMU/list
Log:
releasing DTSA-120-1 (xine-lib)
CVE-2008-1474 fixed in roundup 1.3.3-3.1 NMU


Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-04-02 11:35:42 UTC (rev 8468)
+++ data/CVE/list	2008-04-02 12:19:34 UTC (rev 8469)
@@ -276,7 +276,7 @@
 CVE-2008-1475 (The xml-rpc server in Roundup 1.4.4 does not check property ...)
 	- roundup <not-affected> (xml-rpc code introduced in 1.4.0)
 CVE-2008-1474 (Multiple unspecified vulnerabilities in Roundup before 1.4.4
have ...)
-	- roundup <unfixed> (low; bug #472643)
+	- roundup 1.3.3-3.1 (low; bug #472643)
 CVE-2008-1473 (The Altiris Client Service (AClient.exe) in Symantec Altiris
...)
 	NOT-FOR-US: Symantec Altiris
 CVE-2008-1472 (Stack-based buffer overflow in the ListCtrl ActiveX Control ...)

Modified: data/DTSA/list
==================================================================---
data/DTSA/list	2008-04-02 11:35:42 UTC (rev 8468)
+++ data/DTSA/list	2008-04-02 12:19:34 UTC (rev 8469)
@@ -345,3 +345,6 @@
 [March 31th, 2008] DTSA-119-1 vlc - arbitrary code execution
 	{CVE-2008-1489 CVE-2008-0073}
 	[lenny] - vlc 0.8.6.c-6+lenny3
+[April 2nd, 2008] DTSA-120-1 xine-lib - several integer overflows
+	{CVE-2008-1482}
+	[lenny] - xine-lib 1.1.10.1-2+lenny1

Modified: data/NMU/list
==================================================================---
data/NMU/list	2008-04-02 11:35:42 UTC (rev 8468)
+++ data/NMU/list	2008-04-02 12:19:34 UTC (rev 8469)
@@ -81,3 +81,4 @@
 2008-03-15 smarty 2.6.18-1.1
 2008-03-22 egroupware 1.4.002.dfsg-2.1
 2008-03-26 vlc 0.8.6.e-1.1
+2008-04-02 roundup 1.3.3-3.1