nion at alioth.debian.org
2008-Jul-26 17:09 UTC
[Secure-testing-commits] r9421 - in data: CVE DSA
Author: nion
Date: 2008-07-26 17:09:54 +0000 (Sat, 26 Jul 2008)
New Revision: 9421
Modified:
data/CVE/list
data/DSA/list
Log:
remove CVE-2006-2662 included by typo and mark CVE-2008-2376 as fixed in ruby1.9
1.9.0.2-2
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-07-26 17:01:32 UTC (rev 9420)
+++ data/CVE/list 2008-07-26 17:09:54 UTC (rev 9421)
@@ -1878,7 +1878,7 @@
- gnutls26 2.4.1-1 (medium)
CVE-2008-2376 (Integer overflow in the rb_ary_fill function in array.c in Ruby
before ...)
{DSA-1612-1}
- - ruby1.9 <unfixed>
+ - ruby1.9 1.9.0.2-2
- ruby1.8 1.8.7.22-2
NOTE: http://www.openwall.com/lists/oss-security/2008/07/02/3
CVE-2008-2375 (Memory leak in a certain Red Hat deployment of vsftpd before
2.0.5 on ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2008-07-26 17:01:32 UTC (rev 9420)
+++ data/DSA/list 2008-07-26 17:09:54 UTC (rev 9421)
@@ -1,5 +1,5 @@
[26 Jul 2008] DSA-1618-1 ruby1.9 - several vulnerabilities
- {CVE-2006-2662 CVE-2008-2376 CVE-2008-2662 CVE-2008-2663 CVE-2008-2664
CVE-2008-2725 CVE-2008-2726}
+ {CVE-2008-2376 CVE-2008-2662 CVE-2008-2663 CVE-2008-2664 CVE-2008-2725
CVE-2008-2726}
[etch] - ruby1.9 1.9.0+20060609-1etch2
[25 Jul 2008] DSA-1617-1 refpolicy - incompatible policy
{CVE-2008-1447}