jmm-guest at alioth.debian.org
2008-Apr-18 06:46 UTC
[Secure-testing-commits] r8566 - in data: CVE DSA
Author: jmm-guest
Date: 2008-04-18 06:46:47 +0000 (Fri, 18 Apr 2008)
New Revision: 8566
Modified:
data/CVE/list
data/DSA/list
Log:
policykit fix
add one missing vorbis CVE ID fixed in DSA
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-04-17 22:59:31 UTC (rev 8565)
+++ data/CVE/list 2008-04-18 06:46:47 UTC (rev 8566)
@@ -390,7 +390,7 @@
CVE-2008-1659
RESERVED
CVE-2008-1658 (Format string vulnerability in the grant helper ...)
- - policykit <unfixed> (medium; bug #476615; bug #476616)
+ - policykit 0.8-1 (medium; bug #476615; bug #476616)
CVE-2008-1657 (OpenSSH before 4.9 allows remote authenticated users to bypass
the ...)
- openssh 1:4.7p1-8 (low; bug #475156)
CVE-2008-1656 (Adobe ColdFusion 8 and 8.0.1 does not properly implement the
public ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2008-04-17 22:59:31 UTC (rev 8565)
+++ data/DSA/list 2008-04-18 06:46:47 UTC (rev 8566)
@@ -300,7 +300,7 @@
[etch] - xine-lib 1.1.2+dfsg-5
[sarge] - xine-lib 1.0.1-1sarge6
[21 Jan 2008] DSA-1471-1 libvorbis - several vulnerabilities
- {CVE-2007-3106 CVE-2007-4029 CVE-2007-4066}
+ {CVE-2007-3106 CVE-2007-4029 CVE-2007-4065 CVE-2007-4066}
[etch] - libvorbis 1.1.2.dfsg-1.3
[sarge] - libvorbis 1.1.0-2
[20 Jan 2008] DSA-1470-1 horde3 - missing input sanitising