thr3ads.net - Secure testing commits - [Secure-testing-commits] r8590

If this information is useful, please help other people find it:
Share via:

jmm-guest at alioth.debian.org

2008-Apr-21 19:20 UTC

[Secure-testing-commits] r8590 - in data: . CVE DSA

Author: jmm-guest
Date: 2008-04-21 19:20:35 +0000 (Mon, 21 Apr 2008)
New Revision: 8590

Modified:
   data/CVE/list
   data/DSA/list
   data/spu-candidates.txt
Log:
libpng no-dsa
add one CVE id for clamav
adjust eterm severity to rvxt entry


Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-04-21 11:40:59 UTC (rev 8589)
+++ data/CVE/list	2008-04-21 19:20:35 UTC (rev 8590)
@@ -410,7 +410,7 @@
 	TODO: kpdf/kdegraphics from Etch are not affected, sid needs to be checked
 	TODO: check pdftex
 CVE-2008-1692 (Eterm 0.9.4 opens an xterm on :0 if -display is not specified
and the ...)
-	- eterm 0.9.4.0debian1-2.1 (bug #473127)
+	- eterm 0.9.4.0debian1-2.1 (unimportant; bug #473127)
 CVE-2008-1691 (Unspecified vulnerability in SLMail.exe in SLMail Pro 6.3.1.0
and ...)
 	NOT-FOR-US: SLMail Pro
 CVE-2008-1690 (WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and
...)
@@ -1095,6 +1095,7 @@
 	NOT-FOR-US: Gentoo Linux Ebuilds
 CVE-2008-1382 (libpng 1.0.6 through 1.0.32, 1.2.0 through 1.2.26, and
1.4.0beta01 ...)
 	- libpng 1.2.26-1 (low; bug #476669)
+	[etch] - libpng <no-dsa> (Minor issue, rare function)
 CVE-2008-1381
 	RESERVED
 CVE-2008-1380 (The JavaScript engine in Mozilla Firefox before 2.0.0.14,
Thunderbird ...)

Modified: data/DSA/list
==================================================================---
data/DSA/list	2008-04-21 11:40:59 UTC (rev 8589)
+++ data/DSA/list	2008-04-21 19:20:35 UTC (rev 8590)
@@ -11,7 +11,7 @@
 	{CVE-2008-1614}
 	[etch] - suphp 0.6.2-1+etch0
 [17 Apr 2008] DSA-1549-1 clamav
-	{CVE-2008-0314 CVE-2008-1100}
+	{CVE-2008-0314 CVE-2008-1100 CVE-2008-1833}
 	[etch] - clamav 0.90.1dfsg-3etch11
 [17 Apr 2008] DSA-1548-1 xpdf
 	{CVE-2008-1693}

Modified: data/spu-candidates.txt
==================================================================---
data/spu-candidates.txt	2008-04-21 11:40:59 UTC (rev 8589)
+++ data/spu-candidates.txt	2008-04-21 19:20:35 UTC (rev 8590)
@@ -75,7 +75,11 @@
 
 --
 
+libpng (CVE-2008-1382)
+#476669
 
+--
+
 liferea (CVE-2005-4791)
 notified maintainer

Secure testing commits - Apr 2008 - r8590 - in data: . CVE DSA

[Secure-testing-commits] r8590 - in data: . CVE DSA