joeyh at alioth.debian.org
2008-Jun-22 21:14 UTC
[Secure-testing-commits] r9123 - data/CVE
Author: joeyh
Date: 2008-06-22 21:14:14 +0000 (Sun, 22 Jun 2008)
New Revision: 9123
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-06-22 19:42:34 UTC (rev 9122)
+++ data/CVE/list 2008-06-22 21:14:14 UTC (rev 9123)
@@ -909,13 +909,13 @@
[etch] - pan <not-affected> (Vulnerable code not added until 0.130)
NOTE: see
http://svn.gnome.org/viewvc/pan2/trunk/pan/data/parts.cc?view=log&pathrev=286
CVE-2008-2362 (Multiple integer overflows in the Render extension in the X
server 1.4 ...)
- {DSA-1595-1}
+ {DSA-1595-1 DTSA-141-1}
- xorg-server 2:1.4.1~git20080517-2
CVE-2008-2361 (Integer overflow in the ProcRenderCreateCursor function in the
Render ...)
- {DSA-1595-1}
+ {DSA-1595-1 DTSA-141-1}
- xorg-server 2:1.4.1~git20080517-2
CVE-2008-2360 (Integer overflow in the AllocateGlyph function in the Render
extension ...)
- {DSA-1595-1}
+ {DSA-1595-1 DTSA-141-1}
- xorg-server 2:1.4.1~git20080517-2
CVE-2008-2359 (The default configuration of consolehelper in
system-config-network ...)
NOT-FOR-US: system-config-network Fedora
@@ -3158,12 +3158,12 @@
- iceape 1.1.9-2
- xulrunner 1.8.1.14-1
CVE-2008-1379 (Integer overflow in the fbShmPutImage function in the MIT-SHM
...)
- {DSA-1595-1}
+ {DSA-1595-1 DTSA-141-1}
- xorg-server 2:1.4.1~git20080517-2
CVE-2008-1378
RESERVED
CVE-2008-1377 (The (1) SProcRecordCreateContext and (2)
SProcRecordRegisterClients ...)
- {DSA-1595-1}
+ {DSA-1595-1 DTSA-141-1}
- xorg-server 2:1.4.1~git20080517-2
CVE-2008-1376
RESERVED
@@ -5202,7 +5202,7 @@
NOTE: A crafted XML-RPC request referring to a valid user can exploit this
TODO: check if packages embedding xmlrpc share this code
CVE-2008-0553 (Stack-based buffer overflow in the ReadImage function in
tkImgGIF.c in ...)
- {DSA-1598-1 DSA-1491-1 DSA-1490-1}
+ {DSA-1598-1 DSA-1491-1 DSA-1490-1 DTSA-140-1}
- tk8.5 8.5.0-3
- tk8.4 8.4.17-2
- tk8.3 8.3.5-12