nion at alioth.debian.org
2008-Nov-11 12:32 UTC
[Secure-testing-commits] r10362 - in data: CVE DTSA
Author: nion
Date: 2008-11-11 12:32:16 +0000 (Tue, 11 Nov 2008)
New Revision: 10362
Modified:
data/CVE/list
data/DTSA/list
Log:
cveified vlc
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-11-11 10:04:40 UTC (rev 10361)
+++ data/CVE/list 2008-11-11 12:32:16 UTC (rev 10362)
@@ -59,11 +59,9 @@
NOT-FOR-US: U-Mail Webmail server
CVE-2008-XXXX [universalindentgui insecure usage of temp files]
- universalindentgui <unfixed> (low; bug #504726)
-CVE-2008-XXXX [vlc buffer overflow in cue handling]
+CVE-2008-5032 [vlc buffer overflow in cue handling]
- vlc 0.8.6.h-5 (medium; bug #504639)
- [lenny] - vlc 0.8.6.h-4+lenny2
- NOTE: CVE id requested
-CVE-2008-XXXX [vlc buffer overflow in realtext subtitle parsing]
+CVE-2008-5036 [vlc buffer overflow in realtext subtitle parsing]
- vlc <not-affected> (Vulnerable code not present in 0.8.x)
TODO: recheck if 0.9 gets uploaded to unstable
CVE-2008-4931 (Cross-site scripting (XSS) vulnerability in the account module
in ...)
Modified: data/DTSA/list
==================================================================---
data/DTSA/list 2008-11-11 10:04:40 UTC (rev 10361)
+++ data/DTSA/list 2008-11-11 12:32:16 UTC (rev 10362)
@@ -520,4 +520,5 @@
{CVE-2008-4686}
[lenny] - vlc 0.8.6.h-4+lenny1
[November 8th, 2008] DTSA-176-1 vlc - buffer overflows
+ {CVE-2008-5032}
[lenny] - vlc 0.8.6.h-4+lenny2