Michael Gilbert
2009-Oct-14 02:06 UTC
[Secure-testing-commits] r13009 - in data: . CVE DSA
Author: gilbert-guest
Date: 2009-10-14 02:06:22 +0000 (Wed, 14 Oct 2009)
New Revision: 13009
Modified:
data/CVE/list
data/DSA/list
data/ospu-candidates.txt
data/spu-candidates.txt
Log:
- dopewars non-issue
- tracking for dsa-1906
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-10-14 01:59:08 UTC (rev 13008)
+++ data/CVE/list 2009-10-14 02:06:22 UTC (rev 13009)
@@ -185,7 +185,9 @@
CVE-2009-3603
RESERVED
CVE-2009-3591 (Dopewars 1.5.12 allows remote attackers to cause a denial of
service ...)
- TODO: check
+ - dopewars <unfixed> (low; bug #550913)
+ [etch] - dopewars <no-dsa> (negligible issue)
+ [lenny] - dopewars <no-dsa> (neglibigble issue)
CVE-2009-3589 (incron 0.5.5 does not initialize supplementary groups when
running a ...)
TODO: check
CVE-2009-3588 (Unspecified vulnerability in the arclib component in the
Anti-Virus ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2009-10-14 01:59:08 UTC (rev 13008)
+++ data/DSA/list 2009-10-14 02:06:22 UTC (rev 13009)
@@ -1,6 +1,9 @@
[13 Oct 2009] DSA-1907-1 kvm - several vulnerabilities
{CVE-2008-5714 CVE-2009-3290}
[lenny] - kvm 72+dfsg-5~lenny3
+[11 Oct 2009] DSA-1906-1 clamav - end-of-life announcement
+ NOTE: [etch] - clamav <end-of-life> (upstream has discontinued
providing virus signatures for versions prior to 0.95)
+ NOTE: [lenny] - clamav <end-of-life> (upstream has discontinued
providing virus signatures for versions prior to 0.95)
[10 Oct 2009] DSA-1905-1 python-django - denial of service
{CVE-2009-3695}
[lenny] - python-django 1.0.2-1+lenny2
Modified: data/ospu-candidates.txt
==================================================================---
data/ospu-candidates.txt 2009-10-14 01:59:08 UTC (rev 13008)
+++ data/ospu-candidates.txt 2009-10-14 02:06:22 UTC (rev 13009)
@@ -180,6 +180,12 @@
--
+dopewars (CVE-2009-3591)
+#550913
+notified maintainer
+
+--
+
ed (CVE-2008-3916)
Fix from 0.7-2
notified maintainer
Modified: data/spu-candidates.txt
==================================================================---
data/spu-candidates.txt 2009-10-14 01:59:08 UTC (rev 13008)
+++ data/spu-candidates.txt 2009-10-14 02:06:22 UTC (rev 13009)
@@ -49,6 +49,12 @@
--
+dopewars (CVE-2009-3591)
+#550913
+notified maintainer
+
+--
+
evolution (CVE-2009-1631)
#526409
notified maintainer through initial bugreport