nion at alioth.debian.org
2008-Dec-22 16:42 UTC
[Secure-testing-commits] r10776 - in data: CVE DTSA
Author: nion
Date: 2008-12-22 16:42:28 +0000 (Mon, 22 Dec 2008)
New Revision: 10776
Modified:
data/CVE/list
data/DTSA/list
Log:
DTSA-181-1 (mplayer)
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-12-22 09:14:11 UTC (rev 10775)
+++ data/CVE/list 2008-12-22 16:42:28 UTC (rev 10776)
@@ -1047,6 +1047,7 @@
- xine-lib 1.1.14-3
- faad2 2.6.1-1
- mplayer 1.0~rc2-20 (bug #407010)
+ [lenny] - mplayer 1.0~rc2-17+lenny3
NOTE: overlaps with CVE-2008-4610, same aac issue
CVE-2008-5243 (The real_parse_headers function in demux_real.c in xine-lib
1.1.12, ...)
- xine-lib <unfixed> (unimportant; bug #508716)
Modified: data/DTSA/list
==================================================================---
data/DTSA/list 2008-12-22 09:14:11 UTC (rev 10775)
+++ data/DTSA/list 2008-12-22 16:42:28 UTC (rev 10776)
@@ -532,6 +532,9 @@
[November 29th, 2008] DTSA-179-1 geshi - multiple issues
{CVE-2008-5185 CVE-2008-5186}
[lenny] - geshi 1.0.7.22-1+lenny1
-[December 19th, 2008] DTSA-180-1 courier-authlib SQL injection
+[December 19th, 2008] DTSA-180-1 courier-authlib - sql injection
{CVE-2008-2380}
[lenny] - courier-authlib 0.61.0-1+lenny1
+[December 22nd, 2008] DTSA-181-1 mplayer - arbitrary code execution
+ {CVE-2008-5616}
+ [lenny] - mplayer 1.0~rc2-17+lenny2