Secure testing commits - Oct 2009 - r13064 - in data: CVE NMU

Author: derevko-guest
Date: 2009-10-21 22:26:56 +0000 (Wed, 21 Oct 2009)
New Revision: 13064

Modified:
   data/CVE/list
   data/NMU/list
Log:
- CVE-2009-1722 was fixed in openexr 1.6.1-1
- openexr NMUed


Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-10-21 21:14:19 UTC (rev 13063)
+++ data/CVE/list	2009-10-21 22:26:56 UTC (rev 13064)
@@ -5949,13 +5949,13 @@
 	NOT-FOR-US: CFNetwork in Apple Mac OS X
 CVE-2009-1722 (Heap-based buffer overflow in the compression implementation in
...)
 	{DSA-1842-1}
-	- openexr <unfixed> (medium; bug #540424)
+	- openexr 1.6.1-1 (medium; bug #540424)
 CVE-2009-1721 (The decompression implementation in the Imf::hufUncompress
function in ...)
 	{DSA-1842-1}
-	- openexr <unfixed> (medium; bug #540424)
+	- openexr 1.6.1-4.1 (medium; bug #540424)
 CVE-2009-1720 (Multiple integer overflows in OpenEXR 1.2.2 and 1.6.1 allow ...)
 	{DSA-1842-1}
-	- openexr <unfixed> (medium; bug #540424)
+	- openexr 1.6.1-4.1 (medium; bug #540424)
 CVE-2009-1719 (The Aqua Look and Feel for Java implementation in Java 1.5 on
Mac OS X ...)
 	NOT-FOR-US: Aqua Look and Feel for Java implementation in Java 1.5 on Mac OS X
 CVE-2009-1718 (WebKit in Apple Safari before 4.0 allows user-assisted remote
...)

Modified: data/NMU/list
==================================================================---
data/NMU/list	2009-10-21 21:14:19 UTC (rev 13063)
+++ data/NMU/list	2009-10-21 22:26:56 UTC (rev 13064)
@@ -173,3 +173,4 @@
 2009-10-10 mimetex 1.50-1.1
 2009-10-12 kvm 85+dfsg-4.1
 2009-10-14 kdelibs 4:3.5.10.dfsg.1-2.1
+2009-10-22 openexr 1.6.1-4.1