nion at alioth.debian.org
2008-May-28 16:08 UTC
[Secure-testing-commits] r8921 - in data: CVE DTSA
Author: nion
Date: 2008-05-28 16:08:41 +0000 (Wed, 28 May 2008)
New Revision: 8921
Modified:
data/CVE/list
data/DTSA/list
Log:
new openssl issues: CVE-2008-1672/CVE-2008-0891
releasing DTSA-136-1 (openssl)
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-05-28 15:57:07 UTC (rev 8920)
+++ data/CVE/list 2008-05-28 16:08:41 UTC (rev 8921)
@@ -1626,6 +1626,7 @@
RESERVED
CVE-2008-1672
RESERVED
+ - openssl <unfixed> (bug #483379)
CVE-2008-1671 (start_kdeinit in KDE 3.5.5 through 3.5.9, when installed setuid
root, ...)
- kdelibs 4:3.5.9.dfsg.1-4 (low; bug #478024)
NOTE: unimportant, opinions?
@@ -3452,6 +3453,7 @@
NOT-FOR-US: Red Hat Administration Server
CVE-2008-0891
RESERVED
+ - openssl <unfixed> (bug #483379)
CVE-2008-0890 (Red Hat Directory Server 7.1 before SP4 uses insecure
permissions for ...)
NOT-FOR-US: Red Hat Directory Server
CVE-2008-0889 (Red Hat Directory Server 8.0, when running on Red Hat Enterprise
...)
Modified: data/DTSA/list
==================================================================---
data/DTSA/list 2008-05-28 15:57:07 UTC (rev 8920)
+++ data/DTSA/list 2008-05-28 16:08:41 UTC (rev 8921)
@@ -393,3 +393,6 @@
[May 29th, 2008] DTSA-135-1 php5 - multiple vulnerabilities
{CVE-2008-0599 CVE-2008-1384 CVE-2008-2050 CVE-2008-2051}
[lenny] - php5 5.2.5-3+lenny1
+[May 29th, 2008] DTSA-136-1 openssl - multiple vulnerabilities
+ {CVE-2008-1672 CVE-2008-0891}
+ [lenny] - openssl 0.9.8g-10+lenny1