[Secure-testing-commits] r11476 - data/CVE
Author: fw Date: 2009-03-25 21:35:34 + (Wed, 25 Mar 2009) New Revision: 11476 Modified: data/CVE/list Log: record new OpenSSL issues Modified: data/CVE/list === --- data/CVE/list 2009-03-25 21:17:32 UTC (rev 11475) +++ data/CVE/list 2009-03-25 21:35:34 UTC (rev 11476) @@ -821,6 +821,7 @@ RESERVED CVE-2009-0789 RESERVED + - openssl not-affected (only non-Debian architectures affected) CVE-2009-0788 RESERVED CVE-2009-0787 (The ecryptfs_write_metadata_to_contents function in the eCryptfs ...) @@ -1833,8 +1834,10 @@ NOT-FOR-US: FlexPHPic CVE-2009-0591 RESERVED + - openssl not-affected (vulnerable versions not uploaded to Debian) CVE-2009-0590 RESERVED + - openssl unfixed CVE-2009-0589 RESERVED CVE-2009-0588 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11458 - in data: CVE DSA
Author: fw Date: 2009-03-22 17:23:27 + (Sun, 22 Mar 2009) New Revision: 11458 Modified: data/CVE/list data/DSA/list Log: Reflect that DSA-1750-1 affects different CVEs on etch and lenny Modified: data/CVE/list === --- data/CVE/list 2009-03-22 17:16:52 UTC (rev 11457) +++ data/CVE/list 2009-03-22 17:23:27 UTC (rev 11458) @@ -14476,9 +14476,10 @@ CVE-2008-1383 (The docert function in ssl-cert.eclass, when used by src_compile or ...) NOT-FOR-US: Gentoo Linux Ebuilds CVE-2008-1382 (libpng 1.0.6 through 1.0.32, 1.2.0 through 1.2.26, and 1.4.0beta01 ...) + {DSA-1750-1} - libpng 1.2.26-1 (low; bug #476669) NOTE: 1.2.26-1 contains a patch to fix that - [etch] - libpng no-dsa (Minor issue, rare function) + [etch] - libpng 1.2.15~beta5-1+etch2 CVE-2008-1381 (ZoneMinder before 1.23.3 allows remote authenticated users, and ...) {DTSA-130-1} - zoneminder 1.23.3-1 (medium; bug #479034) @@ -22049,9 +22050,10 @@ CVE-2007-5270 (Unspecified vulnerability in the Boost module before 4.7.x-1.0, and ...) - drupal not-affected (does not ship this module) CVE-2007-5269 (Certain chunk handlers in libpng before 1.0.29 and 1.2.x before 1.2.21 ...) + {DSA-1750-1} - libpng 1.2.15~beta5-3 (low; bug #446308) - [etch] - libpng no-dsa (Minor issue) [sarge] - libpng no-dsa (Minor issue) + [etch] - libpng 1.2.15~beta5-1+etch2 CVE-2007-5268 (pngrtran.c in libpng before 1.0.29 and 1.2.x before 1.2.21 use (1) ...) - libpng not-affected (Vulnerable code not present in Debian version, introduced in 1.2.19) CVE-2007-5267 (Off-by-one error in ICC profile chunk handling in the png_set_iCCP ...) @@ -29012,11 +29014,12 @@ {DSA-1291-2 DTSA-41-1} - samba 3.0.25-1 (high) CVE-2007-2445 (The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and ...) - {DSA-1613-1} + {DSA-1613-1 DSA-1750-1} - libgd2 2.0.35.dfsg-1 (low) [etch] - libgd2 2.0.33-5.2etch1 (low) - libpng 1.2.15~beta5-2 (unimportant) - libpng3 not-affected (unimportant) + [etch] - libpng 1.2.15~beta5-1+etch2 NOTE: Only a crash, no code injection. Calling this DoS stretches things rather far CVE-2007-2444 (Logic error in the SID/Name translation functionality in smbd in Samba ...) {DSA-1291-2 DTSA-41-1} Modified: data/DSA/list === --- data/DSA/list 2009-03-22 17:16:52 UTC (rev 11457) +++ data/DSA/list 2009-03-22 17:23:27 UTC (rev 11458) @@ -1,5 +1,5 @@ [22 Mar 2009] DSA-1750-1 libpng - several vulnerabilities - {CVE-2007-2445 CVE-2007-5269 CVE-2008-1382 CVE-2008-5907 CVE-2008-6218 CVE-2009-0040} + {CVE-2008-5907 CVE-2008-6218 CVE-2009-0040} [etch] - libpng 1.2.15~beta5-1+etch2 [lenny] - libpng 1.2.27-2+lenny2 [20 Mar 2009] DSA-1749-1 linux-2.6 - several vulnerabilities ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11436 - data/CVE
Author: fw Date: 2009-03-18 06:41:26 + (Wed, 18 Mar 2009) New Revision: 11436 Modified: data/CVE/list Log: CVE-2008-4392: add djbdns bug number Modified: data/CVE/list === --- data/CVE/list 2009-03-18 00:39:14 UTC (rev 11435) +++ data/CVE/list 2009-03-18 06:41:26 UTC (rev 11436) @@ -6910,7 +6910,7 @@ CVE-2008-4393 (Cross-site scripting (XSS) vulnerability in VeriSign Kontiki Delivery ...) NOT-FOR-US: VeriSign Kontiki CVE-2008-4392 (dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent ...) - - djbdns unfixed (high) + - djbdns unfixed (high; bug #516394) CVE-2008-4391 (Stack-based buffer overflow in the SetSource method in the ...) NOT-FOR-US: Cisco Linksys WVC54GC CVE-2008-4390 (The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11385 - data/CVE
Author: fw Date: 2009-03-13 13:22:03 + (Fri, 13 Mar 2009) New Revision: 11385 Modified: data/CVE/list Log: CVE-2009-0753: mldonkey not-affected in etch Modified: data/CVE/list === --- data/CVE/list 2009-03-13 11:19:18 UTC (rev 11384) +++ data/CVE/list 2009-03-13 13:22:03 UTC (rev 11385) @@ -977,6 +977,7 @@ NOTE: should a CVE be requested for this problem? CVE-2009-0753 (Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 ...) - mldonkey unfixed (bug #516829; medium) + [etch] - mldonkey not-affected (vulnerable code not present) NOTE: daemon is run as non-root and can only be exploited via localhost CVE-2009-0648 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...) NOT-FOR-US: Falt4 CMS ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11368 - data/CVE
Author: fw Date: 2009-03-10 15:02:36 + (Tue, 10 Mar 2009) New Revision: 11368 Modified: data/CVE/list Log: CVE-2009-0778: linux-2.6 not affected Modified: data/CVE/list === --- data/CVE/list 2009-03-10 13:58:03 UTC (rev 11367) +++ data/CVE/list 2009-03-10 15:02:36 UTC (rev 11368) @@ -150,8 +150,10 @@ NOT-FOR-US: CVE-2009-0780 CVE-2009-0779 (Buffer overflow in pppdial in IBM AIX 5.3 and 6.1 allows local users ...) NOT-FOR-US: IBM AIX -CVE-2009-0778 +CVE-2009-0778 [Linux: rt_cache leak leads to loss of network connectivity] RESERVED + - linux-2.6 not-affected (affected upstream kernel versions not part of Debian) + - linux-2.6.24 not-affected (affected upstream kernel versions not part of Debian) CVE-2009-0777 (Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and ...) TODO: check CVE-2009-0776 (nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11370 - data/CVE
Author: fw Date: 2009-03-10 17:25:56 + (Tue, 10 Mar 2009) New Revision: 11370 Modified: data/CVE/list Log: CVE-2009-0854: dash not-affected Modified: data/CVE/list === --- data/CVE/list 2009-03-10 15:22:14 UTC (rev 11369) +++ data/CVE/list 2009-03-10 17:25:56 UTC (rev 11370) @@ -1,3 +1,5 @@ +CVE-2009-0854 [dash: runs login scripts from the current directory] + - dash not-affected (Debian uses upstream's patch to implement -l) CVE-2009-0835 (The __secure_computing function in kernel/seccomp.c in the seccomp ...) TODO: check CVE-2009-0834 (The audit_syscall_entry function in the Linux kernel 2.6.28.7 and ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11297 - data/CVE
Author: fw Date: 2009-03-01 17:03:19 + (Sun, 01 Mar 2009) New Revision: 11297 Modified: data/CVE/list Log: new znc issue Modified: data/CVE/list === --- data/CVE/list 2009-03-01 13:18:18 UTC (rev 11296) +++ data/CVE/list 2009-03-01 17:03:19 UTC (rev 11297) @@ -1,3 +1,5 @@ +CVE-2009- [znc: authenticated users can obtain shell access] + - znc 0.066-1 (bug #516950) CVE-2009- [dkim-milter: crash on revoked keys] - dkim-milter 2.6.0.dfsg-2 (low) [lenny] - dkim-milter 2.6.0.dfsg-1+lenny1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11298 - data/CVE
Author: fw Date: 2009-03-01 17:36:09 + (Sun, 01 Mar 2009) New Revision: 11298 Modified: data/CVE/list Log: NFUs CVE-2009-0737: mediawiki CVE assigned CVE-2009-0676: linux-2.6 et al. Modified: data/CVE/list === --- data/CVE/list 2009-03-01 17:03:19 UTC (rev 11297) +++ data/CVE/list 2009-03-01 17:36:09 UTC (rev 11298) @@ -15,9 +15,7 @@ CVE-2009-0739 (SQL injection vulnerability in login.php in MyNews 0.10 allows remote ...) NOT-FOR-US: MyNews CVE-2009-0738 (SQL injection vulnerability in login.php in Auth Php 1.0 allows remote ...) - TODO: check -CVE-2009-0737 (Multiple cross-site scripting (XSS) vulnerabilities in the web-based ...) - TODO: check + NOT-FOR-US: Auth Php CVE-2009-0736 (Cross-site scripting (XSS) vulnerability in Pebble before 2.3.2 allows ...) NOT-FOR-US: Pebble CVE-2009-0735 (Directory traversal vulnerability in lib/classes/message_class.php in ...) @@ -139,7 +137,12 @@ CVE-2009-0677 (avatarlist.php in the Your Account module, reached through ...) NOT-FOR-US: RavenNuke CVE-2009-0676 (The sock_getsockopt function in net/core/sock.c in the Linux kernel ...) - TODO: check + - linux-2.6 unfixed (low) + - linux-2.6.24 unfixed (low) + NOTE: Original fix was incomplete/risky, see: + NOTE: http://marc.info/?l=linux-kernelm=123540732700371w=2 + NOTE: Reproducer in https://bugzilla.redhat.com/show_bug.cgi?id=486305 + NOTE: lacks initialzer for len. Leak confirmed with fixed reproducer. CVE-2009-0675 (The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux ...) TODO: check CVE-2009-0674 (images/captcha.php in Raven Web Services RavenNuke 2.30, when ...) @@ -833,10 +836,9 @@ CVE-2009- [konqueror: potential exploits via application launchers] - kdebase unfixed (low; bug #515106) NOTE: need to submit a request for CVE id -CVE-2009- [mediawiki XSS in installer scripts] +CVE-2009-0737 (Multiple cross-site scripting (XSS) vulnerabilities in the web-based ...) - mediawiki unfixed (low; bug #514547) [lenny] - mediawiki 1:1.12.0-2lenny3 - NOTE: CVE id was requested on oss-sec CVE-2009-0524 RESERVED CVE-2009-0523 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11299 - data/CVE
Author: fw Date: 2009-03-01 17:50:38 + (Sun, 01 Mar 2009) New Revision: 11299 Modified: data/CVE/list Log: NFUs CVE-2008-6125: moodle fixed Modified: data/CVE/list === --- data/CVE/list 2009-03-01 17:36:09 UTC (rev 11298) +++ data/CVE/list 2009-03-01 17:50:38 UTC (rev 11299) @@ -223,9 +223,9 @@ CVE-2008-6277 (SQL injection vulnerability in product.php in RakhiSoftware Price ...) NOT-FOR-US: RakhiSoftware Price Comparison Script CVE-2008-6276 (Multiple SQL injection vulnerabilities in the User Karma module 5.x ...) - TODO: check + NOT-FOR-US: User Karma module for Drupal CVE-2008-6275 (Cross-site scripting (XSS) vulnerability in the User Karma module 5.x ...) - TODO: check + NOT-FOR-US: User Karma module for Drupal CVE-2008-6274 (Multiple SQL injection vulnerabilities in index.php in FamilyProject ...) NOT-FOR-US: FamilyProject CVE-2008-6273 (Directory traversal vulnerability in configuration_script.php in ...) @@ -317,7 +317,7 @@ CVE-2008-6230 (SQL injection vulnerability in Tour.php in Pre Projects Pre Podcast ...) NOT-FOR-US: Pre Projects Pre Podcast Portal CVE-2008-6229 (Cross-site scripting (XSS) vulnerability in the administrative ...) - TODO: check + NOT-FOR-US: CCK module for Drupal CVE-2008-6228 (Pre Multi-Vendor Shopping Malls allows remote attackers to bypass ...) NOT-FOR-US: Pre Multi-Vendor Shopping Malls CVE-2008-6227 (SQL injection vulnerability in buyer_detail.php in Pre Multi-Vendor ...) @@ -800,7 +800,8 @@ CVE-2008-6126 (Multiple directory traversal vulnerabilities in moziloCMS 1.10.2 and ...) NOT-FOR-US: moziloCMS CVE-2008-6125 (Unspecified vulnerability in the user editing interface in Moodle ...) - TODO: check + {DSA-1691-1} + - moodle 1.8.2.dfsg-2 CVE-2008-6124 (SQL injection vulnerability in the hotpot_delete_selected_attempts ...) {DSA-1691-1} - moodle 1.8.2.dfsg-2 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11300 - data/CVE
Author: fw Date: 2009-03-01 17:52:32 + (Sun, 01 Mar 2009) New Revision: 11300 Modified: data/CVE/list Log: bug numbers Modified: data/CVE/list === --- data/CVE/list 2009-03-01 17:50:38 UTC (rev 11299) +++ data/CVE/list 2009-03-01 17:52:32 UTC (rev 11300) @@ -724,7 +724,7 @@ NOT-FOR-US: ZeroShell CVE-2009-0544 (Buffer overflow in the PyCrypto ARC2 module 2.0.1 allows remote ...) {DSA-1726-1} - - python-crypto unfixed (bug filed) + - python-crypto unfixed (bug #516660) CVE-2009-0543 (ProFTPD Server 1.3.1, with NLS support enabled, allows remote ...) {DSA-1727-1} - proftpd 1.3.2-1 (medium; bug #516388) @@ -806,7 +806,7 @@ {DSA-1691-1} - moodle 1.8.2.dfsg-2 CVE-2008-6123 (The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp ...) - - net-snmp unfixed (bug filed) + - net-snmp unfixed (bug #516801) CVE-2008-6122 (The web management interface in Netgear WGR614v9 allows remote ...) NOT-FOR-US: Netgear WGR614v9 CVE-2008-6121 (CRLF injection vulnerability in SocialEngine (SE) 2.7 and earlier ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11301 - data/CVE
Author: fw Date: 2009-03-01 18:54:57 + (Sun, 01 Mar 2009) New Revision: 11301 Modified: data/CVE/list Log: CVE-2008-4392: remove check Modified: data/CVE/list === --- data/CVE/list 2009-03-01 17:52:32 UTC (rev 11300) +++ data/CVE/list 2009-03-01 18:54:57 UTC (rev 11301) @@ -6086,7 +6086,6 @@ CVE-2008-4393 (Cross-site scripting (XSS) vulnerability in VeriSign Kontiki Delivery ...) NOT-FOR-US: VeriSign Kontiki CVE-2008-4392 (dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent ...) - TODO: check - djbdns unfixed (high) CVE-2008-4391 (Stack-based buffer overflow in the SetSource method in the ...) NOT-FOR-US: Cisco Linksys WVC54GC ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11302 - data/CVE
Author: fw Date: 2009-03-01 20:37:09 + (Sun, 01 Mar 2009) New Revision: 11302 Modified: data/CVE/list Log: NFU Modified: data/CVE/list === --- data/CVE/list 2009-03-01 18:54:57 UTC (rev 11301) +++ data/CVE/list 2009-03-01 20:37:09 UTC (rev 11302) @@ -1620,7 +1620,7 @@ CVE-2009-0311 (The Backbone service (ftbackbone.exe) in EMC AutoStart before 5.3 SP2 ...) NOT-FOR-US: EMC AutoStart CVE-2009-0310 (Buffer overflow in SUSE blinux (aka sbl) in SUSE openSUSE 10.3 through ...) - TODO: check + NOT-FOR-US: SuSE blinux CVE-2009-0309 RESERVED CVE-2009-0308 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11277 - data/CVE
Author: fw Date: 2009-02-27 18:20:25 + (Fri, 27 Feb 2009) New Revision: 11277 Modified: data/CVE/list Log: record unstable fix for DSA-1728-1 Modified: data/CVE/list === --- data/CVE/list 2009-02-27 18:16:38 UTC (rev 11276) +++ data/CVE/list 2009-02-27 18:20:25 UTC (rev 11277) @@ -1,3 +1,7 @@ +CVE-2009- [dkim-milter: crash on revoked keys] + {DSA-1728-1} + - dkim-milter 2.6.0.dfsg-2 (low) + NOTE: http://sourceforge.net/tracker/index.php?func=detailaid=2508602group_id=139420atid=744358 CVE-2009- [optipng array overflow] - optipng 0.6.2.1-1 (low) NOTE: http://secunia.com/advisories/34035/ ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11278 - data/CVE
Author: fw Date: 2009-02-27 19:08:32 + (Fri, 27 Feb 2009) New Revision: 11278 Modified: data/CVE/list Log: dkim-milter: forgot fixed version for lenny Modified: data/CVE/list === --- data/CVE/list 2009-02-27 18:20:25 UTC (rev 11277) +++ data/CVE/list 2009-02-27 19:08:32 UTC (rev 11278) @@ -1,6 +1,7 @@ CVE-2009- [dkim-milter: crash on revoked keys] {DSA-1728-1} - dkim-milter 2.6.0.dfsg-2 (low) + [lenny] - dkim-milter 2.6.0.dfsg-1+lenny1 NOTE: http://sourceforge.net/tracker/index.php?func=detailaid=2508602group_id=139420atid=744358 CVE-2009- [optipng array overflow] - optipng 0.6.2.1-1 (low) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11279 - doc
Author: fw Date: 2009-02-27 19:17:20 + (Fri, 27 Feb 2009) New Revision: 11279 Modified: doc/narrative_introduction Log: CVE-20yy- documentation Feel free to edit if necessary. Modified: doc/narrative_introduction === --- doc/narrative_introduction 2009-02-27 19:08:32 UTC (rev 11278) +++ doc/narrative_introduction 2009-02-27 19:17:20 UTC (rev 11279) @@ -297,6 +297,30 @@ NOTE: Bug was introduced in a patch to squid-2.5.STABLE10, NOTE: this patch was never applied to the Debian package. +CVE assignments +--- + +Debian can only assign CVE names from its own pool for issues which +are not public. To request a CVE from the Debian pool, write to +secur...@debian.org and include a description which follows CVE +conventions. To request a CVE for public issues, write to MITRE and +possibly to the moderated oss-security list. In the meantime, you can +add an entry of the form + +CVE-2009- [optipng array overflow] + - optipng 0.6.2.1-1 (low) + NOTE: http://secunia.com/advisories/34035/ + +in the data/CVE/list file. It is desirable to include references +which uniquely identify the issue, such as a permanent link to an +entry in the upstream bug tracker, or a bug in the Debian BTS. If the +issue is likely present in unstable, a bug should be filed to help the +maintainer to track it. + +Lack of CVE entries should not block advisory publication which are +otherwise ready, but we should strieve to release fully +cross-referenced advisories nevertheless. + Distribution tags - Our data is primarily targeted at sid, as we track the version that @@ -412,5 +436,4 @@ TODO: document DTSAs document tsck -document CVE- document tracked tag ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11280 - doc
Author: fw Date: 2009-02-27 19:33:46 + (Fri, 27 Feb 2009) New Revision: 11280 Modified: doc/narrative_introduction Log: minor layout changes Modified: doc/narrative_introduction === --- doc/narrative_introduction 2009-02-27 19:17:20 UTC (rev 11279) +++ doc/narrative_introduction 2009-02-27 19:33:46 UTC (rev 11280) @@ -299,11 +299,10 @@ CVE assignments --- - Debian can only assign CVE names from its own pool for issues which are not public. To request a CVE from the Debian pool, write to secur...@debian.org and include a description which follows CVE -conventions. To request a CVE for public issues, write to MITRE and +conventions. To request a CVE for public issues, write to Mitre and possibly to the moderated oss-security list. In the meantime, you can add an entry of the form ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11246 - data/CVE
Author: fw Date: 2009-02-20 22:42:25 + (Fri, 20 Feb 2009) New Revision: 11246 Modified: data/CVE/list Log: CVE-2008-4392: djbdns Modified: data/CVE/list === --- data/CVE/list 2009-02-20 22:40:20 UTC (rev 11245) +++ data/CVE/list 2009-02-20 22:42:25 UTC (rev 11246) @@ -5719,6 +5719,7 @@ NOT-FOR-US: VeriSign Kontiki CVE-2008-4392 (dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent ...) TODO: check + - djbdns unfixed (high) CVE-2008-4391 (Stack-based buffer overflow in the SetSource method in the ...) NOT-FOR-US: Cisco Linksys WVC54GC CVE-2008-4390 (The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11239 - data/CVE
Author: fw Date: 2009-02-19 20:18:03 + (Thu, 19 Feb 2009) New Revision: 11239 Modified: data/CVE/list Log: CVE-2009-0501: moodle fixed Modified: data/CVE/list === --- data/CVE/list 2009-02-18 21:30:12 UTC (rev 11238) +++ data/CVE/list 2009-02-19 20:18:03 UTC (rev 11239) @@ -417,7 +417,7 @@ NOTE: MSA-09-0004 CVE-2009-0501 (Unspecified vulnerability in the Calendar export feature in Moodle 1.8 ...) {DTSA-195-1} - - moodle unfixed (low) + - moodle 1.8.2.dfsg-4 (low) [etch] - moodle not-affected (Vulnerable code not present) CVE-2009-0500 (Cross-site scripting (XSS) vulnerability in course/lib.php in Moodle ...) {DSA-1724-1 DTSA-195-1} ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11240 - data/CVE
Author: fw Date: 2009-02-19 20:18:11 + (Thu, 19 Feb 2009) New Revision: 11240 Modified: data/CVE/list Log: mediawiki installer XSS: unstable is vulnerable Modified: data/CVE/list === --- data/CVE/list 2009-02-19 20:18:03 UTC (rev 11239) +++ data/CVE/list 2009-02-19 20:18:11 UTC (rev 11240) @@ -336,7 +336,8 @@ - kdebase unfixed (low; bug #515106) NOTE: need to submit a request for CVE id CVE-2009- [mediawiki XSS in installer scripts] - [lenny] - mediawiki 1:1.12.0-2lenny3 (low; bug #514547) + - mediawiki unfixed (low; bug #514547) + [lenny] - mediawiki 1:1.12.0-2lenny3 NOTE: CVE id was requested on oss-sec CVE-2009-0524 RESERVED ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11241 - data/CVE
Author: fw Date: 2009-02-19 20:36:59 + (Thu, 19 Feb 2009) New Revision: 11241 Modified: data/CVE/list Log: CVE-2009-0605: not affected (no kprobes) Modified: data/CVE/list === --- data/CVE/list 2009-02-19 20:18:11 UTC (rev 11240) +++ data/CVE/list 2009-02-19 20:36:59 UTC (rev 11241) @@ -65,7 +65,8 @@ CVE-2009-0606 (The link_image function in linker/linker.c in the dynamic linker in ...) NOT-FOR-US: Android CVE-2009-0605 (Stack consumption vulnerability in the do_page_fault function in ...) - TODO: check + - linux-2.6 not-affected (CONFIG_KPROBES is not enabled) + - linux-2.6.24 not-affected (CONFIG_KPROBES is not enabled) CVE-2008-6158 (Multiple unspecified vulnerabilities in the admin backend in w3bgt;cms ...) NOT-FOR-US: w3blabor CMS CVE-2008-6157 (SepCity Classified Ads stores the admin password in cleartext in ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11219 - lib/python
Author: fw Date: 2009-02-15 13:29:06 + (Sun, 15 Feb 2009) New Revision: 11219 Modified: lib/python/security_db.py Log: lib/python/security_db.py: create the oldstable status view Modified: lib/python/security_db.py === --- lib/python/security_db.py 2009-02-14 17:14:04 UTC (rev 11218) +++ lib/python/security_db.py 2009-02-15 13:29:06 UTC (rev 11219) @@ -388,7 +388,7 @@ AND sp.subrelease = '' ORDER BY sp.name, st.urgency, st.bug_name) -for (name, nickname) in (('stable', 'lenny'),): +for (name, nickname) in (('stable', 'lenny'), ('oldstable', 'etch'),): cursor.execute( CREATE VIEW %s_status AS SELECT DISTINCT sp.name AS package, st.bug_name AS bug, ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11221 - /
Author: fw Date: 2009-02-15 13:29:13 + (Sun, 15 Feb 2009) New Revision: 11221 Modified: Makefile Log: Makefile: kludge to deal with the armel discrepancy Also remove arm from squeeze. Modified: Makefile === --- Makefile2009-02-15 13:29:11 UTC (rev 11220) +++ Makefile2009-02-15 13:29:13 UTC (rev 11221) @@ -9,7 +9,7 @@ MIRROR = http://ftp-stud.fht-esslingen.de/debian/ ETCH_ARCHS = alpha amd64 arm hppa i386 ia64 mips mipsel powerpc s390 sparc LENNY_ARCHS = alpha amd64 arm armel hppa i386 ia64 mips mipsel powerpc s390 sparc -SQUEEZE_ARCHS = alpha amd64 arm armel hppa i386 ia64 mips mipsel powerpc s390 sparc +SQUEEZE_ARCHS = alpha amd64 armel hppa i386 ia64 mips mipsel powerpc s390 sparc all: rm -f data/security-new.db data/security-new.db.journal @@ -62,6 +62,22 @@ done ; \ done +update-stable-packages: + set -e ; for rel in etch lenny ; do \ + for archive in main contrib non-free ; do \ + $(PYTHON) bin/apt-update-file \ + $(MIRROR)/dists/$$rel/$$archive/source/Sources \ + data/packages/$${rel}__$${archive}_Sources ; \ + done ; \ + for arch in $(ETCH_ARCHS) ; do \ + for archive in main contrib non-free ; do \ + $(PYTHON) bin/apt-update-file \ + $(MIRROR)/dists/$$rel/$$archive/binary-$$arch/Packages \ + data/packages/$${rel}__$${archive}_$${arch}_Packages ; \ + done ; \ + done ; \ + done + ST_MIRROR = http://security.debian.org/dists/squeeze/updates ST_FILE = data/packages/squeeze_security_ update-testing-security: @@ -90,7 +106,7 @@ VOLATILE_MIRROR = http://volatile.debian.net/debian-volatile/dists update-volatile: set -e for archive in etch lenny ; do \ - for arch in $(LENNY_ARCHS) ; do \ + for arch in $(ETCH_ARCHS) ; do \ $(PYTHON) bin/apt-update-file \ $(VOLATILE_MIRROR)/$${archive}/volatile/main/binary-$$arch/Packages \ data/packages/$${archive}-volatile__main_$${arch}_Packages ; \ @@ -99,11 +115,14 @@ $(VOLATILE_MIRROR)/$${archive}/volatile/main/source/Sources \ data/packages/$${archive}-volatile__main_Sources ; \ done + $(PYTHON) bin/apt-update-file \ + $(VOLATILE_MIRROR)/lenny/volatile/main/binary-armel/Packages \ + data/packages/lenny-volatile__main_armel_Packages BACKPORTS_MIRROR = http://www.backports.org/backports.org/dists update-backports: set -e for archive in etch lenny ; do \ - for arch in $(LENNY_ARCHS) ; do \ + for arch in $(ETCH_ARCHS) ; do \ $(PYTHON) bin/apt-update-file \ $(BACKPORTS_MIRROR)/$${archive}-backports/main/binary-$$arch/Packages \ data/packages/$${archive}-backports__main_$${arch}_Packages ; \ @@ -112,3 +131,6 @@ $(BACKPORTS_MIRROR)/$${archive}-backports/main/source/Sources \ data/packages/$${archive}-backports__main_Sources ; \ done + $(PYTHON) bin/apt-update-file \ + $(BACKPORTS_MIRROR)/lenny-backports/main/binary-armel/Packages \ + data/packages/lenny-backports__main_armel_Packages ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11223 - bin
Author: fw Date: 2009-02-15 17:17:11 + (Sun, 15 Feb 2009) New Revision: 11223 Modified: bin/tracker_service.py Log: bin/tracker_service.py: add oldstable-backports Modified: bin/tracker_service.py === --- bin/tracker_service.py 2009-02-15 15:43:19 UTC (rev 11222) +++ bin/tracker_service.py 2009-02-15 17:17:11 UTC (rev 11223) @@ -106,6 +106,8 @@ self.register('status/release/stable', self.page_status_release_stable) self.register('status/release/stable-backports', self.page_status_release_stable_backports) +self.register('status/release/oldstable-backports', + self.page_status_release_oldstable_backports) self.register('status/release/testing', self.page_status_release_testing) self.register('status/release/unstable', @@ -166,6 +168,8 @@ 'Vulnerable packages in the old stable suite'), ('status/release/stable-backports', 'Vulnerable packages in backports for stable'), +('status/release/oldstable-backports', + 'Vulnerable packages in backports for oldstable'), ('status/dtsa-candidates', Candidates for DTSAs), ('status/todo', 'TODO items'), ('status/itp', 'ITPs with potential security issues'), @@ -768,6 +772,12 @@ title='Vulnerable source packages among backports for stable', rel='lenny-backports') +def page_status_release_oldstable_backports(self, path, params, url): +return self.page_status_release_unstable_like( +path, params, url, +title='Vulnerable source packages among backports for oldstable', +rel='etch-backports') + def page_status_dtsa_candidates(self, path, params, url): bf = BugFilter(params) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11224 - data/CVE
Author: fw Date: 2009-02-15 20:30:39 + (Sun, 15 Feb 2009) New Revision: 11224 Modified: data/CVE/list Log: CVE-2009-0068: xdg-utils not affected Modified: data/CVE/list === --- data/CVE/list 2009-02-15 17:17:11 UTC (rev 11223) +++ data/CVE/list 2009-02-15 20:30:39 UTC (rev 11224) @@ -1590,7 +1590,7 @@ CVE-2009-0069 (Unspecified vulnerability in the nfs4rename_persistent_fh function in ...) NOT-FOR-US: Solaris CVE-2009-0068 (Interaction error in xdg-open allows remote attackers to execute ...) - TODO: check + - xdg-utils not-affected (xdg-open is not added to mailcap) CVE-2009-0067 RESERVED CVE-2009-0066 (Multiple unspecified vulnerabilities in Intel system software for ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11181 - data/CVE
Author: fw Date: 2009-02-10 21:10:38 + (Tue, 10 Feb 2009) New Revision: 11181 Modified: data/CVE/list Log: CVE-2009-0362: fail2ban Modified: data/CVE/list === --- data/CVE/list 2009-02-10 20:57:38 UTC (rev 11180) +++ data/CVE/list 2009-02-10 21:10:38 UTC (rev 11181) @@ -454,8 +454,9 @@ RESERVED CVE-2009-0363 RESERVED -CVE-2009-0362 +CVE-2009-0362 [fail2ban DoS through incorrect wuftpd log message parsing] RESERVED + - fail2ban 0.8.3-2sid1 (low; bug #514163) CVE-2009-0361 RESERVED CVE-2009-0360 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r11171 - data/CVE
Author: fw Date: 2009-02-10 06:38:58 + (Tue, 10 Feb 2009) New Revision: 11171 Modified: data/CVE/list Log: CVE-2008-4989: add bug number Also remove bogus etch entry (wrong package, covered by removed). Modified: data/CVE/list === --- data/CVE/list 2009-02-09 21:14:15 UTC (rev 11170) +++ data/CVE/list 2009-02-10 06:38:58 UTC (rev 11171) @@ -3758,9 +3758,8 @@ CVE-2008-4990 (Enomaly Elastic Computing Platform (ECP), formerly Enomalism, before ...) TODO: check CVE-2008-4989 (The _gnutls_x509_verify_certificate function in lib/x509/verify.c in ...) - - gnutls26 2.4.2-3 + - gnutls26 2.4.2-3 (bug #505360) - gnutls13 removed - [etch] - gnutls1.3 unfixed CVE-2008-4963 (Unspecified vulnerability in the VLAN Trunking Protocol (VTP) ...) NOT-FOR-US: Cisco IOS and CatOS CVE-2008-4962 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10990 - data/CVE
Author: fw Date: 2009-01-19 20:56:38 + (Mon, 19 Jan 2009) New Revision: 10990 Modified: data/CVE/list Log: CVE-2008-5516, CVE-2008-5517: git-core Modified: data/CVE/list === --- data/CVE/list 2009-01-19 20:54:07 UTC (rev 10989) +++ data/CVE/list 2009-01-19 20:56:38 UTC (rev 10990) @@ -1108,9 +1108,10 @@ CVE-2008-5518 RESERVED CVE-2008-5517 (The web interface in git in SUSE openSUSE 10.3 allows remote attackers ...) - TODO: check -CVE-2008-5516 + - git-core unfixed (low; bug #512330) +CVE-2008-5516 [gitweb shell command injection through snapshots and pickaxe search] RESERVED + - git-core 1:1.5.6-1 CVE-2008-5515 RESERVED CVE-2008-5514 (Off-by-one error in the rfc822_output_char function in the ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10991 - data/CVE
Author: fw Date: 2009-01-19 21:12:14 + (Mon, 19 Jan 2009) New Revision: 10991 Modified: data/CVE/list Log: CVE-2008-5517: other git-core issue fixed, too Modified: data/CVE/list === --- data/CVE/list 2009-01-19 20:56:38 UTC (rev 10990) +++ data/CVE/list 2009-01-19 21:12:14 UTC (rev 10991) @@ -1108,7 +1108,7 @@ CVE-2008-5518 RESERVED CVE-2008-5517 (The web interface in git in SUSE openSUSE 10.3 allows remote attackers ...) - - git-core unfixed (low; bug #512330) + - git-core 1:1.5.6.5-2 (low; bug #512330) CVE-2008-5516 [gitweb shell command injection through snapshots and pickaxe search] RESERVED - git-core 1:1.5.6-1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10891 - data/CVE
Author: fw Date: 2009-01-08 09:29:01 + (Thu, 08 Jan 2009) New Revision: 10891 Modified: data/CVE/list Log: CVE-2008-5077: openssl CVE-2009-0025: bind9 Modified: data/CVE/list === --- data/CVE/list 2009-01-08 09:14:13 UTC (rev 10890) +++ data/CVE/list 2009-01-08 09:29:01 UTC (rev 10891) @@ -575,8 +575,11 @@ RESERVED CVE-2009-0026 RESERVED -CVE-2009-0025 +CVE-2009-0025 [OpenSSL signature verification API misuse: bind9 incarnation] RESERVED + - bind9 unfixed (low) + NOTE: low severity because it is believed hard to trigger and only + NOTE: affects DNSSEC with DSA, which is supposedly rarely used. CVE-2009-0024 RESERVED CVE-2009-0023 @@ -1898,8 +1901,9 @@ NOTE: http://marc.info/?l=linux-netdevm=122841256115780w=2 CVE-2008-5078 (Multiple buffer overflows in the (1) recognize_eps_file function ...) TODO: check -CVE-2008-5077 +CVE-2008-5077 [OpenSSL signature verification misuse] RESERVED + - openssl 0.9.8g-15 CVE-2008-5075 (Multiple SQL injection vulnerabilities in E-Uploader Pro 1.0 (aka ...) NOT-FOR-US: E-Uploader Pro CVE-2008-5074 (SQL injection vulnerability in index.php in the Freshlinks 1.0 RC1 ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10869 - in data: CVE DSA
Author: fw Date: 2009-01-06 11:34:06 + (Tue, 06 Jan 2009) New Revision: 10869 Modified: data/CVE/list data/DSA/list Log: clean up xterm issues Old allowWindowOps issue never affected etch, even before DSA-1694-1. Modified: data/CVE/list === --- data/CVE/list 2009-01-06 11:26:58 UTC (rev 10868) +++ data/CVE/list 2009-01-06 11:34:06 UTC (rev 10869) @@ -67,8 +67,11 @@ CVE-2008-5808 (Cross-site scripting (XSS) vulnerability in Six Apart Movable Type ...) NOT-FOR-US: Six Apart Movable Type Enterprise CVE-2006-7236 (The default configuration of xterm on Debian GNU/Linux sid and ...) - {DSA-1694-1 DTSA-182-1} + {DTSA-182-1} - xterm 238-1 (medium; bug #510030) + [etch] - xterm not-affected (allowWindowOps disabled in configuration) + NOTE: Somewhat mitigated by a filter for control characters in + NOTE: post-etch versions. CVE-2008-5807 (Multiple cross-site scripting (XSS) vulnerabilities in TestLink before ...) NOT-FOR-US: TestLink CVE-2008-5806 (SQL injection vulnerability in login.php in DeltaScripts PHP ...) @@ -8295,7 +8298,7 @@ RESERVED CVE-2008-2383 (CRLF injection vulnerability in xterm allows user-assisted attackers ...) {DSA-1694-1 DTSA-182-1} - - xterm unfixed (medium; bug #510030) + - xterm 238-2 (medium; bug #510030) CVE-2008-2382 (The protocol_client_msg function in vnc.c in the VNC server in (1) ...) - qemu 0.9.1-9 [etch] - qemu not-affected (Tested by maintainer) Modified: data/DSA/list === --- data/DSA/list 2009-01-06 11:26:58 UTC (rev 10868) +++ data/DSA/list 2009-01-06 11:34:06 UTC (rev 10869) @@ -3,7 +3,7 @@ [etch] - ruby1.9 1.9.0+20060609-1etch4 [etch] - ruby1.8 1.8.5-4etch4 [02 Jan 2009] DSA-1694-1 xterm - remote code execution - {CVE-2008-2383 CVE-2006-7236} + {CVE-2008-2383} [etch] - xterm 222-1etch3 [27 Dec 2008] DSA-1693-1 phppgadmin - several vulnerabilities {CVE-2007-2865 CVE-2007-5728 CVE-2008-5587} ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10822 - data/CVE
Author: fw Date: 2008-12-29 08:16:18 + (Mon, 29 Dec 2008) New Revision: 10822 Modified: data/CVE/list Log: CVE-2008-2383: xterm Modified: data/CVE/list === --- data/CVE/list 2008-12-29 02:27:50 UTC (rev 10821) +++ data/CVE/list 2008-12-29 08:16:18 UTC (rev 10822) @@ -7977,8 +7977,8 @@ RESERVED CVE-2008-2384 RESERVED -CVE-2008-2383 - RESERVED +CVE-2008-2383 [xterm code execution through DECRQSS escape sequence] + - xterm unfixed (medium; bug #510030) CVE-2008-2382 (The protocol_client_msg function in vnc.c in the VNC server in (1) ...) - qemu 0.9.1-9 [etch] - qemu not-affected (Tested by maintainer) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10784 - data/CVE
Author: fw Date: 2008-12-23 15:31:07 + (Tue, 23 Dec 2008) New Revision: 10784 Modified: data/CVE/list Log: CVE-2008-5374: use source package bash Modified: data/CVE/list === --- data/CVE/list 2008-12-23 15:03:49 UTC (rev 10783) +++ data/CVE/list 2008-12-23 15:31:07 UTC (rev 10784) @@ -740,7 +740,7 @@ - cmus unfixed (low; bug #509277) [etch] - cmus no-dsa (Not run as root) CVE-2008-5374 (bash-doc 3.2 allows local users to overwrite arbitrary files via a ...) - - bash-doc unfixed (unimportant; bug #509279) + - bash unfixed (unimportant; bug #509279) NOTE: scripts are examples CVE-2008-5373 (mtx-changer.Adic-Scalar-24 in bacula-common 2.4.2 allows local users ...) - bacula-common unfixed (unimportant; bug #509301) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10753 - data/CVE
Author: fw Date: 2008-12-21 08:02:21 + (Sun, 21 Dec 2008) New Revision: 10753 Modified: data/CVE/list Log: CVE-2008-5620: roundcube CVE-2008-3443: add upstream commits, very low severity Modified: data/CVE/list === --- data/CVE/list 2008-12-21 00:23:57 UTC (rev 10752) +++ data/CVE/list 2008-12-21 08:02:21 UTC (rev 10753) @@ -103,7 +103,7 @@ CVE-2008-5623 RESERVED CVE-2008-5620 (RoundCube Webmail (roundcubemail) before 0.2-beta allows remote ...) - TODO: check + - roundcube unfixed (low) CVE-2008-5618 (imudp in rsyslog 4.x before 4.1.2, 3.21 before 3.21.9 beta, and 3.20 ...) TODO: check CVE-2008-5615 @@ -5414,8 +5414,9 @@ - iceweasel unfixed (unimportant) NOTE: browser dos not treated as security issues CVE-2008-3443 (The regular expression engine (regex.c) in Ruby 1.8.5 and earlier, ...) - - ruby1.8 1.8.7.72-1 (bug #494401) - - ruby1.9 unfixed + - ruby1.8 1.8.7.72-1 (low; bug #494401) + - ruby1.9 unfixed (low) + NOTE: Upstream commits 18212 (for 1.8) and 18213 (for 1.9). CVE-2008-3442 (WinZip before 11.0 does not properly verify the authenticity of ...) NOT-FOR-US: WinZip CVE-2008-3441 (Nullsoft Winamp before 5.24 does not properly verify the authenticity ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10771 - in data: . CVE
Author: fw Date: 2008-12-22 05:50:52 + (Mon, 22 Dec 2008) New Revision: 10771 Modified: data/CVE/list data/embedded-code-copies Log: openjdk-6 embeds lcms (version 1.16, it seems) Modified: data/CVE/list === --- data/CVE/list 2008-12-21 21:14:20 UTC (rev 10770) +++ data/CVE/list 2008-12-22 05:50:52 UTC (rev 10771) @@ -876,6 +876,7 @@ CVE-2008-5317 (Integer signedness error in the cmsAllocGamma function in ...) {DSA-1684-1} - lcms 1.17-1 + - openjdk-6 unfixed CVE-2008-5316 (Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in ...) {DSA-1684-1} - lcms 1.16-1 Modified: data/embedded-code-copies === --- data/embedded-code-copies 2008-12-21 21:14:20 UTC (rev 10770) +++ data/embedded-code-copies 2008-12-22 05:50:52 UTC (rev 10771) @@ -733,3 +733,6 @@ rssparser (http://nwow.org) - egroupware unfixed - phpgroupware unfixed + +lcms + - openjdk-6 unfixed (fork) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10714 - data/DSA
Author: fw Date: 2008-12-17 10:29:44 + (Wed, 17 Dec 2008) New Revision: 10714 Modified: data/DSA/list Log: DSA-1686, DSA-1687 added Modified: data/DSA/list === --- data/DSA/list 2008-12-17 09:24:26 UTC (rev 10713) +++ data/DSA/list 2008-12-17 10:29:44 UTC (rev 10714) @@ -1,3 +1,11 @@ +[15 Dec 2008] DSA-1687-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities + {CVE-2008-3527 CVE-2008-3528 CVE-2008-4554 CVE-2008-4576 CVE-2008-4933 CVE-2008-4934 CVE-2008-5025 CVE-2008-5029 CVE-2008-5079 CVE-2008-5300} + [etch] - fai-kernels 1.17+etch.23etch1 + [etch] - linux-2.6 2.6.18.dfsg.1-23etch1 + [etch] - user-mode-linux 2.6.18-1um-2etch.23etch1 +[14 Dec 2008] DSA-1686-1 no-ip - arbitrary code execution + {CVE-2008-5297} + [etch] - no-ip 2.1.1-4+etch1 [12 Dec 2008] DSA-1685-1 uw-imap - multiple vulnerabilities {CVE-2008-5005 CVE-2008-5006} [etch] - uw-imap 7:2002edebian1-13.1+etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10692 - data/CVE
Author: fw Date: 2008-12-14 11:26:14 + (Sun, 14 Dec 2008) New Revision: 10692 Modified: data/CVE/list Log: CVE-2008-5081: avahi Modified: data/CVE/list === --- data/CVE/list 2008-12-13 21:14:11 UTC (rev 10691) +++ data/CVE/list 2008-12-14 11:26:14 UTC (rev 10692) @@ -908,8 +908,10 @@ RESERVED CVE-2008-5082 RESERVED -CVE-2008-5081 +CVE-2008-5081 [avahi daemon DoS through zero source port] RESERVED + - avahi unfixed (bug #508700; low) + NOTE: http://git.0pointer.de/?p=avahi.git;a=commitdiff;h=3093047f1aa36bed8a37fa79004bf0ee287929f4 CVE-2008-5080 (awstats.pl in AWStats 6.8 and earlier does not properly remove quote ...) {DSA-1679-1} - awstats 6.7.dfsg-5.1 (bug #495432; low) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10688 - data/CVE
Author: fw Date: 2008-12-13 11:43:15 + (Sat, 13 Dec 2008) New Revision: 10688 Modified: data/CVE/list Log: roundcube remote code execution vulnerability Modified: data/CVE/list === --- data/CVE/list 2008-12-13 09:14:14 UTC (rev 10687) +++ data/CVE/list 2008-12-13 11:43:15 UTC (rev 10688) @@ -1,3 +1,6 @@ +CVE-2008- [roundcube remote code execution via preg_replace in html2text.php] + - roundcube unfixed (high; bug #508628) + NOTE: According to the bug report, this is being exploited. CVE-2008- [other symlink attack vectors in gpsdrive] - gpsdrive unfixed (bug #508597) TODO: request CVE id ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10680 - lib/python
Author: fw Date: 2008-12-12 19:39:29 + (Fri, 12 Dec 2008) New Revision: 10680 Modified: lib/python/debian_support.py Log: lib/python/debian_support.py: Handle failure to download patches If the data is inconsistent, use a non-diffed download. Modified: lib/python/debian_support.py === --- lib/python/debian_support.py2008-12-11 21:14:12 UTC (rev 10679) +++ lib/python/debian_support.py2008-12-12 19:39:29 UTC (rev 10680) @@ -377,8 +377,11 @@ for patch_name in patches_to_apply: print updateFile: downloading patch + `patch_name` -patch_contents = downloadGunzipLines(remote + '.diff/' + patch_name - + '.gz') +try: +patch_contents = downloadGunzipLines(remote + '.diff/' + patch_name + + '.gz') +except IOError, e: +return downloadFile(remote, local) if readLinesSHA1(patch_contents ) patch_hashes[patch_name]: raise ValueError, patch %s was garbled % `patch_name` patchLines(lines, patchesFromEdScript(patch_contents)) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10683 - data/DSA
Author: fw Date: 2008-12-12 21:37:54 + (Fri, 12 Dec 2008) New Revision: 10683 Modified: data/DSA/list Log: DSA-1684-1: fix lcms version Modified: data/DSA/list === --- data/DSA/list 2008-12-12 21:28:30 UTC (rev 10682) +++ data/DSA/list 2008-12-12 21:37:54 UTC (rev 10683) @@ -1,6 +1,6 @@ [10 Dec 2008] DSA-1684-1 lcms - multiple vulnerabilities {CVE-2008-5316 CVE-2008-5317} - [etch] - lcms 1.14-1.1+etch1 + [etch] - lcms 1.15-1.1+etch1 [08 Dec 2008] DSA-1683-1 streamripper - potential code execution {CVE-2007-4337 CVE-2008-4829} [etch] - streamripper 1.61.27-1+etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10684 - data/DSA
Author: fw Date: 2008-12-12 21:41:56 + (Fri, 12 Dec 2008) New Revision: 10684 Modified: data/DSA/list Log: DSA-1685-1: uw-imap Modified: data/DSA/list === --- data/DSA/list 2008-12-12 21:37:54 UTC (rev 10683) +++ data/DSA/list 2008-12-12 21:41:56 UTC (rev 10684) @@ -1,3 +1,6 @@ +[12 Dec 2008] DSA-1685-1 uw-imap - multiple vulnerabilities +{CVE-2008-5005 CVE-2008-5006} +[etch] - uw-imap 7:2002edebian1-13.1+etch1 [10 Dec 2008] DSA-1684-1 lcms - multiple vulnerabilities {CVE-2008-5316 CVE-2008-5317} [etch] - lcms 1.15-1.1+etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10628 - bin
Author: fw Date: 2008-12-05 19:10:23 + (Fri, 05 Dec 2008) New Revision: 10628 Added: bin/show-debsecan Log: bin/show-debsecan: new script to debug debsecan data Added: bin/show-debsecan === --- bin/show-debsecan (rev 0) +++ bin/show-debsecan 2008-12-05 19:10:23 UTC (rev 10628) @@ -0,0 +1,55 @@ +#!/usr/bin/python + +import sys +import apsw +import base64 +import zlib +from cStringIO import StringIO + +if len(sys.argv) not in (2, 3): +print usage: show-debsecan DATABASE-PATH [BLOB-NAME] +sys.exit(1) + +db = apsw.Connection(sys.argv[1]) +c = db.cursor() + +if len(sys.argv) == 2: +for (name,) in c.execute(SELECT name FROM debsecan_data ORDER BY name): +print name +else: # len(sys.argv) == 3 +name = sys.argv[2] +for (data,) in c.execute(SELECT data FROM debsecan_data WHERE name = ?, + (name,)): +pass +data = base64.b64decode(data) +data = zlib.decompress(data) + +# The following has been taken from a debsecan test case. +data = StringIO(data) + +if data.readline() VERSION 1\n: +sys.stderr.write(error: server sends data in unknown format\n) +sys.exit(1) + +vuln_names = [] +for line in data: +if line[-1:] == '\n': +line = line[:-1] +if line == '': +break +(name, flags, desc) = line.split(',', 2) +vuln_names.append(name) + +for line in data: +if line[-1:] == '\n': +line = line[:-1] +if line == '': +break +(package, vuln, rest) = line.split(',', 2) +vuln = vuln_names[int(vuln)] +print %s,%s,%s % (package, vuln, rest) + +for line in data: +print line, + +db.close() ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10592 - /
Author: fw Date: 2008-12-03 11:13:10 + (Wed, 03 Dec 2008) New Revision: 10592 Modified: Makefile Log: Makefile: Add serve target for testing Modified: Makefile === --- Makefile2008-12-03 11:06:13 UTC (rev 10591) +++ Makefile2008-12-03 11:13:10 UTC (rev 10592) @@ -39,6 +39,10 @@ $(PYTHON) bin/check-syntax DTSA data/DTSA/list touch $@ +.PHONY: serve +serve: + @bash bin/test-web-server + .PHONY: update-packages update-testing-security RELEASES = lenny sid update-packages: ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10594 - data/CVE
Author: fw Date: 2008-12-03 11:13:29 + (Wed, 03 Dec 2008) New Revision: 10594 Modified: data/CVE/list Log: CVE-2008-3714: awstats fix is not efffective Modified: data/CVE/list === --- data/CVE/list 2008-12-03 11:13:12 UTC (rev 10593) +++ data/CVE/list 2008-12-03 11:13:29 UTC (rev 10594) @@ -3828,7 +3828,8 @@ CVE-2008-3715 (Cross-site scripting (XSS) vulnerability in ...) NOT-FOR-US: FlexCMS CVE-2008-3714 (Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.8 ...) - - awstats 6.7.dfsg-5 (low) + - awstats unfixed (bug #495432; low) + NOTE: upstream bug 2001151 CVE-2008-3713 (SQL injection vulnerability in product.php in PHPBasket allows remote ...) NOT-FOR-US: PHPBasket CVE-2008-3712 (Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10595 - data/CVE
Author: fw Date: 2008-12-03 12:52:07 + (Wed, 03 Dec 2008) New Revision: 10595 Modified: data/CVE/list Log: Remove duplicate liquidsoap issue Modified: data/CVE/list === --- data/CVE/list 2008-12-03 11:13:29 UTC (rev 10594) +++ data/CVE/list 2008-12-03 12:52:07 UTC (rev 10595) @@ -3732,8 +3732,6 @@ [etch] - sgml2x no-dsa (Minor issue) CVE-2008-4951 (dtc 0.29.6 allows local users to overwrite arbitrary files via a ...) - dtc 0.29.10-1 (low; bug #496362) -CVE-2008- [liguidsoap: insecure temp file] - - liquidsoap unfixed (low; bug #496360) CVE-2008-4994 (The (1) ncsarmt and (2) ncsawrap scripts in xmcd 2.6 allows local ...) - xmcd 2.6-21 (low; bug #496416) [etch] - xmcd no-dsa (Minor issue) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10597 - data/CVE
Author: fw Date: 2008-12-03 17:17:38 + (Wed, 03 Dec 2008) New Revision: 10597 Modified: data/CVE/list Log: CVE-2008-5277: pdns fixed in unstable, etch not affected Modified: data/CVE/list === --- data/CVE/list 2008-12-03 15:07:49 UTC (rev 10596) +++ data/CVE/list 2008-12-03 17:17:38 UTC (rev 10597) @@ -61,7 +61,8 @@ NOT-FOR-US: Zilab Chat and Instant Messaging CVE-2008-5277 [PowerDNS minor DoS through CH/HINFO queries] RESERVED - - pdns unfixed (low) + - pdns 2.9.21.2-1 (low) + [etch] - pdns not-affected (old version of HINFO parser) CVE-2008-5275 (Multiple directory traversal vulnerabilities in the (a) quot;Unzip ...) NOT-FOR-US: net2ftp CVE-2008-5274 (Todd Woolums ASP News Management 2.2 allows remote attackers to obtain ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10600 - in data: CVE DSA
Author: fw Date: 2008-12-03 18:54:09 + (Wed, 03 Dec 2008) New Revision: 10600 Modified: data/CVE/list data/DSA/list Log: CVE-2008-5080: incorrect fix for awstats Modified: data/CVE/list === --- data/CVE/list 2008-12-03 18:27:40 UTC (rev 10599) +++ data/CVE/list 2008-12-03 18:54:09 UTC (rev 10600) @@ -529,8 +529,10 @@ RESERVED CVE-2008-5081 RESERVED -CVE-2008-5080 +CVE-2008-5080 [incorrect fix of CVE-2008-3714] + {CVE-2008-3714} RESERVED + - awstats unfixed (bug #495432; low) CVE-2008-5079 RESERVED CVE-2008-5078 Modified: data/DSA/list === --- data/DSA/list 2008-12-03 18:27:40 UTC (rev 10599) +++ data/DSA/list 2008-12-03 18:54:09 UTC (rev 10600) @@ -1,5 +1,5 @@ [03 Dec 2008] DSA-1679-1 awstats - cross-site scripting - {CVE-2008-3714} + {CVE-2008-3714 CVE-2008-5080} [etch] - awstats 6.5+dfsg-1+etch1 [03 Dec 2008] DSA-1678-1 perl - privilege escalation {CVE-2004-0452 CVE-2005-0448 CVE-2008-5302 CVE-2008-5303} ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10601 - data/CVE
Author: fw Date: 2008-12-03 18:57:30 + (Wed, 03 Dec 2008) New Revision: 10601 Modified: data/CVE/list Log: CVE-2008-1389: clamav not affected in etch Modified: data/CVE/list === --- data/CVE/list 2008-12-03 18:54:09 UTC (rev 10600) +++ data/CVE/list 2008-12-03 18:57:30 UTC (rev 10601) @@ -9289,6 +9289,8 @@ [sarge] - asterisk not-affected (Only 1.4.x affected) CVE-2008-1389 (libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows ...) - clamav 0.94.dfsg-1 + [etch] - clamav not-affected (parsing does not continue on error) + NOTE: see [EMAIL PROTECTED] CVE-2008-1388 RESERVED CVE-2008-1387 (ClamAV before 0.93 allows remote attackers to cause a denial of ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10602 - data/CVE
Author: fw Date: 2008-12-03 19:03:51 + (Wed, 03 Dec 2008) New Revision: 10602 Modified: data/CVE/list Log: CVE-2008-5314: clamav Modified: data/CVE/list === --- data/CVE/list 2008-12-03 18:57:30 UTC (rev 10601) +++ data/CVE/list 2008-12-03 19:03:51 UTC (rev 10602) @@ -1,3 +1,5 @@ +CVE-2008-5314 [deep recursion in ClamAV's JPEG reader] + - clamav 0.94.dfsg.2-1 (medium; bug #507624) CVE-2008-5311 (SQL injection vulnerability in image.php in NetArt Media Blog System ...) TODO: check CVE-2008-5310 (SQL injection vulnerability in image.php in NetArt Media Car Portal ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10579 - lib/python
Author: fw Date: 2008-12-02 21:13:06 + (Tue, 02 Dec 2008) New Revision: 10579 Modified: lib/python/debian_support.py Log: lib/python/debian_support.py: Normalize version numbers before comparison In theory, this allows us to use the data for unstable for volatile and backports.org. However, more testing is required if this is indeed effective, and volatile does not actually use the version number scheme assumed in this change. Modified: lib/python/debian_support.py === --- lib/python/debian_support.py2008-12-02 19:55:00 UTC (rev 10578) +++ lib/python/debian_support.py2008-12-02 21:13:06 UTC (rev 10579) @@ -55,9 +55,15 @@ file.write(%s:%d: %s\n % (self.filename, self.lineno, self.msg)) file.flush() +# This regular expression is used to strip ~bpo1 and ~volatile1 from +# version numbers before they are compared. +_version_normalize_regexp = re.compile(r~(?:bpo|volatile)[0-9.+]+$) + class Version: -Version class which uses the original APT comparison algorithm. +Version class which uses the original APT comparison algorithm. +~bpo and ~volatile suffixes are ignored. + def __init__(self, version): Creates a new Version object. t = type(version) @@ -67,6 +73,7 @@ assert t == types.StringType, `version` assert version self.__asString = version +self.__forCompare = _version_normalize_regexp.sub(, version) def __str__(self): return self.__asString @@ -75,11 +82,16 @@ return 'Version(%s)' % `self.__asString` def __cmp__(self, other): -return apt_pkg.VersionCompare(self.__asString, other.__asString) +return apt_pkg.VersionCompare(self.__forCompare, other.__forCompare) +def version_compare(a, b, vc = apt_pkg.VersionCompare): +Compares two versions according to the Debian algorithm. + +~bpo and ~volatile suffixes are ignored. +a = _version_normalize_regexp.sub(, a) +b = _version_normalize_regexp.sub(, b) +return vc(a, b) -version_compare = apt_pkg.VersionCompare - class PackageFile: A Debian package file. ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10580 - /
Author: fw Date: 2008-12-02 21:13:07 + (Tue, 02 Dec 2008) New Revision: 10580 Modified: Makefile Log: Makefile: Add update-backports, as suggested by Gerfried Fuchs Modified: Makefile === --- Makefile2008-12-02 21:13:06 UTC (rev 10579) +++ Makefile2008-12-02 21:13:07 UTC (rev 10580) @@ -95,3 +95,15 @@ data/packages/$${archive}_volatile_main_Sources ; \ done +BACKPORTS_MIRROR = http://www.backports.org/backports.org/dists +update-backports: + set -e for archive in etch ; do \ + for arch in $(LENNY_ARCHS) ; do \ + $(PYTHON) bin/apt-update-file \ + $(BACKPORTS_MIRROR)/$${archive}-backports/main/binary-$$arch/Packages \ + data/packages/$${archive}_backports_main_$${arch}_Packages ; \ + done ; \ + $(PYTHON) bin/apt-update-file \ + $(BACKPORTS_MIRROR)/$${archive}-backports/main/source/Sources \ + data/packages/$${archive}_backports_main_Sources ; \ + done ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10581 - bin
Author: fw Date: 2008-12-02 21:13:10 + (Tue, 02 Dec 2008) New Revision: 10581 Modified: bin/apt-update-file Log: bin/apt-update-file: In case of an error, print source and target Modified: bin/apt-update-file === --- bin/apt-update-file 2008-12-02 21:13:07 UTC (rev 10580) +++ bin/apt-update-file 2008-12-02 21:13:10 UTC (rev 10581) @@ -26,4 +26,10 @@ sys.stderr.write(usage: apt-update-file REMOTE LOCAL\n) sys.exit(1) -debian_support.updateFile(sys.argv[1], sys.argv[2]) +try: +debian_support.updateFile(sys.argv[1], sys.argv[2]) +except: +print sys.stderr, \ +error: in download of %s to %s: % (repr(sys.argv[1]), + repr(sys.argv[2])) +raise ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10582 - /
Author: fw Date: 2008-12-02 21:13:12 + (Tue, 02 Dec 2008) New Revision: 10582 Modified: Makefile Log: Makefile: Use a different name for the backports files STABLE-backports is distinct from STABLE, so the [STABLE] tags don't apply there, which is the correct approach since the version numbering scheme is based on unstable (well, testing) and not stable. Modified: Makefile === --- Makefile2008-12-02 21:13:10 UTC (rev 10581) +++ Makefile2008-12-02 21:13:12 UTC (rev 10582) @@ -101,9 +101,9 @@ for arch in $(LENNY_ARCHS) ; do \ $(PYTHON) bin/apt-update-file \ $(BACKPORTS_MIRROR)/$${archive}-backports/main/binary-$$arch/Packages \ - data/packages/$${archive}_backports_main_$${arch}_Packages ; \ + data/packages/$${archive}-backports__main_$${arch}_Packages ; \ done ; \ $(PYTHON) bin/apt-update-file \ $(BACKPORTS_MIRROR)/$${archive}-backports/main/source/Sources \ - data/packages/$${archive}_backports_main_Sources ; \ + data/packages/$${archive}-backports__main_Sources ; \ done ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10565 - /
Author: fw Date: 2008-12-01 19:05:20 + (Mon, 01 Dec 2008) New Revision: 10565 Modified: Makefile Log: Makefile: fix typo (spotted by Gerfried Fuchs) Modified: Makefile === --- Makefile2008-12-01 15:14:05 UTC (rev 10564) +++ Makefile2008-12-01 19:05:20 UTC (rev 10565) @@ -2,7 +2,7 @@ PYTHON_MODULES = $(wildcard lib/python/*.py) BUG_LISTS = $(wildcard data/*/list) -# Adjust these if necessary. The architecture selection is arther +# Adjust these if necessary. The architecture selection is rather # arbitrary at the moment. More architectures can be added later. # MIRROR = http://merkel.debian.org/~aba/debian/ ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10566 - lib/python
Author: fw Date: 2008-12-01 19:05:22 + (Mon, 01 Dec 2008) New Revision: 10566 Modified: lib/python/web_support.py Log: lib/python/web_support.py: one more typing fix for Python 2.5 We suddenly have to deal with additional Unicode strings. Modified: lib/python/web_support.py === --- lib/python/web_support.py 2008-12-01 19:05:20 UTC (rev 10565) +++ lib/python/web_support.py 2008-12-01 19:05:22 UTC (rev 10566) @@ -254,6 +254,8 @@ def flatten(self, write): write(self.__contents) +_string_types = (types.StringType, types.UnicodeType) + class Compose(HTMLBase): Glues a sequence of HTML snippets together, without enclosing it in a tag. @@ -262,7 +264,7 @@ def flatten(self, write): for x in self.__contents: -if type(x) == types.StringType: +if type(x) in _string_types: write(escapeHTML(x)) else: x.flatten(write) @@ -310,7 +312,7 @@ closing = /%s % self.__name try: for x in self.contents: -if type(x) == types.StringType: +if type(x) in _string_types: write(escapeHTML(x)) else: x.flatten(write) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10567 - lib/python
Author: fw Date: 2008-12-01 19:05:26 + (Mon, 01 Dec 2008) New Revision: 10567 Modified: lib/python/web_support.py Log: lib/python/web_support.py: Include server port in generated URLs This allows us to run the service on a non-default port. Modified: lib/python/web_support.py === --- lib/python/web_support.py 2008-12-01 19:05:22 UTC (rev 10566) +++ lib/python/web_support.py 2008-12-01 19:05:26 UTC (rev 10567) @@ -658,6 +658,9 @@ params = cgi.parse(data, environment) path = environment.get('PATH_INFO', '') server_name = environment.get('SERVER_NAME', '') +server_port = environment.get('SERVER_PORT', '') +if server_port and server_port 80: +server_name = server_name + : + server_port script_name = environment.get('SCRIPT_NAME', '') try: ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10568 - bin
Author: fw Date: 2008-12-01 19:05:28 + (Mon, 01 Dec 2008) New Revision: 10568 Added: bin/test-web-server Log: bin/test-web-server: New script for testing purposes Added: bin/test-web-server === --- bin/test-web-server (rev 0) +++ bin/test-web-server 2008-12-01 19:05:28 UTC (rev 10568) @@ -0,0 +1,47 @@ +#!/bin/bash + +set -e + +server_port=10605 +service=tracker_service.py +thttpd=/usr/sbin/thttpd + +if ! command -v mktemp /dev/null ; then +echo 'error: mktemp required' +exit 1 +elif ! command -v servinvoke /dev/null ; then +echo 'error: servinvoke required' +exit 1 +elif ! test -x $thttpd ; then +echo 'error: thttpd required' +exit 1 +fi + +bindir=`dirname $0` +if ! test -r $bindir/$service ; then +echo error: failed to locate bin directory (tried $bindir) +exit 1 +fi + +webroot=`mktemp -d` +if ! test -d $webroot ; then +echo error: invalid TMPDIR setting +rm -rf -- $webroot +exit 1 +fi +trap rm -rf $webroot 0 +cat $webroot/tracker EOF +#!/usr/bin/servinvoke + +copy-env +target-unix $webroot/service-socket +EOF +chmod 755 $webroot/tracker +$thttpd -h localhost -p $server_port -c tracker \ +-d $webroot -l $webroot/log -i $webroot/pid +echo URL: http://localhost:$server_port/tracker; + +cd $bindir +python $service $webroot/service-socket ../data/security.db || true +read pid $webroot/pid +kill $pid Property changes on: bin/test-web-server ___ Name: svn:executable + * ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10526 - bin
Author: fw Date: 2008-11-29 10:36:17 + (Sat, 29 Nov 2008) New Revision: 10526 Modified: bin/tracker_service.py Log: bin/tracker_service.py: Remove oldstable from the web front end We can resurrect it if needed again. Modified: bin/tracker_service.py === --- bin/tracker_service.py 2008-11-29 10:16:46 UTC (rev 10525) +++ bin/tracker_service.py 2008-11-29 10:36:17 UTC (rev 10526) @@ -101,8 +101,6 @@ self.register('redirect/*', self.page_redirect) self.register('source-package/*', self.page_source_package) self.register('binary-package/*', self.page_binary_package) -self.register('status/release/oldstable', - self.page_status_release_oldstable) self.register('status/release/stable', self.page_status_release_stable) self.register('status/release/testing', self.page_status_release_testing) @@ -637,9 +635,6 @@ def page_status_release_stable(self, path, params, url): return self.page_status_release_stable_oldstable('stable', params, url) -def page_status_release_oldstable(self, path, params, url): -return self.page_status_release_stable_oldstable('oldstable', - params, url) def page_status_release_testing(self, path, params, url): bf = BugFilterNoDSA(params) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10465 - lib/python
Author: fw Date: 2008-11-23 18:07:13 + (Sun, 23 Nov 2008) New Revision: 10465 Modified: lib/python/bugs.py Log: lib/python/bugs.py: Replace integer type asserts to with int conversion The reason is that even in Python 2.5, numeric objects fluctuate between int and long types. Modified: lib/python/bugs.py === --- lib/python/bugs.py 2008-11-23 13:39:12 UTC (rev 10464) +++ lib/python/bugs.py 2008-11-23 18:07:13 UTC (rev 10465) @@ -35,6 +35,11 @@ return None del listUrgencies +def to_integer(expr): +ei = int(expr) +assert ei == expr, expr +return ei + class PackageNote: A package note. @@ -95,10 +100,10 @@ assert False def loadBugs(self, cursor): -assert type(self.id) == types.IntType, self.id +id = to_integer(self.id) assert len(self.bugs) == 0 for (b,) in cursor.execute\ -(SELECT bug FROM debian_bugs WHERE note = ?, (self.id,)): +(SELECT bug FROM debian_bugs WHERE note = ?, (id,)): self.bugs.append(int(b)) def merge(self, other): @@ -184,7 +189,7 @@ def __init__(self, fname, lineno, date, name, description, comments): assert type(fname) in types.StringTypes -assert type(lineno) == types.IntType +lineno = to_integer(lineno) self.source_file = fname self.source_line = lineno self.date = date ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10437 - bin
Author: fw Date: 2008-11-20 15:15:24 + (Thu, 20 Nov 2008) New Revision: 10437 Modified: bin/update-nvd Log: bin/update-nvd: Remove duplicates before loading NVD data Modified: bin/update-nvd === --- bin/update-nvd 2008-11-20 12:07:00 UTC (rev 10436) +++ bin/update-nvd 2008-11-20 15:15:24 UTC (rev 10437) @@ -34,6 +34,14 @@ data += nvd.parse(f) f.close() +# For some reason, NVD adds duplicates, so we need to get rid of them. +# Sort afterwords to increase locality in the insert process. +deduplicate = {} +for x in data: +deduplicate[x[0]] = x +data = deduplicate.values() +data.sort() + cursor = db.writeTxn() if incremental: db.updateNVD(cursor, data) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10162 - data/CVE
Author: fw Date: 2008-10-26 13:06:03 + (Sun, 26 Oct 2008) New Revision: 10162 Modified: data/CVE/list Log: NFUs CVE-2008-4723 looks bogus Modified: data/CVE/list === --- data/CVE/list 2008-10-26 12:15:26 UTC (rev 10161) +++ data/CVE/list 2008-10-26 13:06:03 UTC (rev 10162) @@ -19,19 +19,26 @@ CVE-2008-4730 (Cross-site scripting (XSS) vulnerability in MyID.php in phpMyID 0.9 ...) TODO: check CVE-2008-4729 (Stack-based buffer overflow in Hummingbird.XWebHostCtrl.1 ActiveX ...) - TODO: check + NOT-FOR-US: Hummingbird Xweb CVE-2008-4728 (Multiple insecure method vulnerabilities in the ...) - TODO: check + NOT-FOR-US: Hummingbird Deployment Wizard CVE-2008-4727 (Cross-site scripting (XSS) vulnerability in the contact update page ...) - TODO: check + NOT-FOR-US: SunGard Banner Student CVE-2008-4726 (Stack-based buffer overflow in the SFTP subsystem in GoodTech SSH 6.4 ...) - TODO: check + NOT-FOR-US: GoodTech SSH CVE-2008-4725 (Cross-site scripting (XSS) vulnerability in Opera.dll in Opera 9.52 ...) - TODO: check + NOT-FOR-US: Opera CVE-2008-4724 (Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome ...) - TODO: check + {CVE-2008-4723} + TODO: check if Webkit is affected CVE-2008-4723 (Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ...) +{CVE-2008-4724} TODO: check + NOTE: http://www.jorgan.users.cg.yu/ seems to be the original source + NOTE: Not enough details to tell if this is a real vulnerability. + NOTE: My guess is that file names containing are incorrectly + NOTE: handled in FTP mode. Since the server might directly serve + NOTE: HTML files anyway, this seems a remote risk. CVE-2008-4722 (Unspecified vulnerability in Sun Integrated Lights-Out Manager (ILOM) ...) TODO: check CVE-2008-4721 (PHP Jabbers Post Comment 3.0 allows remote attackers to bypass ...) @@ -81,15 +88,15 @@ CVE-2008-4699 (Insecure method vulnerability in the ActiveX control (PAWWeb11.ocx) in ...) TODO: check CVE-2008-4698 (Opera before 9.61 does not properly block scripts during preview of a ...) - TODO: check + NOT-FOR-US: Opera CVE-2008-4697 (The Fast Forward feature in Opera before 9.61, when a page is located ...) TODO: check CVE-2008-4696 (Cross-site scripting (XSS) vulnerability in Opera.dll in Opera before ...) - TODO: check + NOT-FOR-US: Opera CVE-2008-4695 (Opera before 9.60 allows remote attackers to obtain sensitive ...) - TODO: check + NOT-FOR-US: Opera CVE-2008-4694 (Unspecified vulnerability in Opera before 9.60 allows remote attackers ...) - TODO: check + NOT-FOR-US: Opera CVE-2008-4693 (The SORT/LIST SERVICES component in IBM DB2 9.1 before FP6 and 9.5 ...) TODO: check CVE-2008-4692 (The Native Managed Provider for .NET component in IBM DB2 8 before ...) @@ -174,7 +181,7 @@ CVE-2008-4653 (SQL injection vulnerability in makale.php in Makale 0.26 and possibly ...) TODO: check CVE-2008-4652 (Buffer overflow in the ActiveX control (DartFtp.dll) in Dart ...) - TODO: check + NOT-FOR-US: Dart Communications PowerTCP FTP CVE-2008-4651 (Multiple SQL injection vulnerabilities in Jetbox CMS 2.1 allow remote ...) TODO: check CVE-2008-4650 (SQL injection vulnerability in viewevent.php in myEvent 1.6 allows ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10164 - data/CVE
Author: fw Date: 2008-10-26 13:06:37 + (Sun, 26 Oct 2008) New Revision: 10164 Modified: data/CVE/list Log: CVE-2008-4731: yacy itp Modified: data/CVE/list === --- data/CVE/list 2008-10-26 13:06:20 UTC (rev 10163) +++ data/CVE/list 2008-10-26 13:06:37 UTC (rev 10164) @@ -15,7 +15,7 @@ CVE-2008-4732 (SQL injection vulnerability in ajax_comments.php in the WP Comment ...) TODO: check CVE-2008-4731 (Multiple unspecified vulnerabilities in YaCy before 0.61 have unknown ...) - TODO: check + - yacy itp (bug #452422) CVE-2008-4730 (Cross-site scripting (XSS) vulnerability in MyID.php in phpMyID 0.9 ...) TODO: check CVE-2008-4729 (Stack-based buffer overflow in Hummingbird.XWebHostCtrl.1 ActiveX ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10165 - data/CVE
Author: fw Date: 2008-10-26 13:06:54 + (Sun, 26 Oct 2008) New Revision: 10165 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2008-10-26 13:06:37 UTC (rev 10164) +++ data/CVE/list 2008-10-26 13:06:54 UTC (rev 10165) @@ -135,7 +135,7 @@ - drupal5 5.10-3 (low; bug #503217) TODO: check if druapal5 really has this vulnerability, the code looks different CVE-2008-4676 (Unspecified vulnerability in Citrix XenApp (formerly Presentation ...) - TODO: check + NOT-FOR-US: Citrix XenApp CVE-2008-4675 (SQL injection vulnerability in index.php in PHPcounter 1.3.2 and ...) TODO: check CVE-2008-4674 (SQL injection vulnerability in realestate-index.php in Conkurent Real ...) @@ -193,7 +193,7 @@ CVE-2008-4647 (SQL injection vulnerability in index.php in sweetCMS 1.5.2 allows ...) TODO: check CVE-2008-4646 (The Websense Reporter Module in Websense Enterprise 6.3.2 stores the ...) - TODO: check + NOT-FOR-US: Websense Enterprise CVE-2008-4645 (plugins/event_tracer/event_list.php in PhpWebGallery 1.7.2 and earlier ...) TODO: check CVE-2008-4644 (hits.php in myWebland myStats allows remote attackers to bypass IP ...) @@ -209,7 +209,7 @@ CVE-2008-4639 (jhead.c in Matthias Wandel jhead before 2.84 allows local users to ...) TODO: check CVE-2008-4638 (qioadmin in the Quick I/O for Database feature in Symantec Veritas ...) - TODO: check + NOT-FOR-US: Symantec VxFS CVE-2008-4637 (Cross-site scripting (XSS) vulnerability in cpCommerce before 1.2.4 ...) TODO: check CVE-2008-4636 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10170 - data/CVE
Author: fw Date: 2008-10-26 22:56:29 + (Sun, 26 Oct 2008) New Revision: 10170 Modified: data/CVE/list Log: NFUs CVE-2008-4639: jhead Modified: data/CVE/list === --- data/CVE/list 2008-10-26 21:14:14 UTC (rev 10169) +++ data/CVE/list 2008-10-26 22:56:29 UTC (rev 10170) @@ -159,7 +159,7 @@ CVE-2008-4665 (SQL injection vulnerability in PG Matchmaking allows remote attackers ...) TODO: check CVE-2008-4664 (Heap-based buffer overflow in QvodInsert.QvodCtrl.1 ActiveX control ...) - TODO: check + NOT-FOR-US: QvodInsert CVE-2008-4663 (Cross-site scripting (XSS) vulnerability in analysis.cgi 1.44, as used ...) TODO: check CVE-2008-4662 (Directory traversal vulnerability in admin.php in LokiCMS 0.3.4, when ...) @@ -187,11 +187,11 @@ CVE-2008-4650 (SQL injection vulnerability in viewevent.php in myEvent 1.6 allows ...) TODO: check CVE-2008-4649 (Session fixation vulnerability in Elxis CMS 2008.1 revision 2204 ...) - TODO: check + NOT-FOR-US: Elxis CVE-2008-4648 (Cross-site scripting (XSS) vulnerability in index.php in Elxis CMS ...) - TODO: check + NOT-FOR-US: Elxis CVE-2008-4647 (SQL injection vulnerability in index.php in sweetCMS 1.5.2 allows ...) - TODO: check + NOT-FOR-US: sweetCMS CVE-2008-4646 (The Websense Reporter Module in Websense Enterprise 6.3.2 stores the ...) NOT-FOR-US: Websense Enterprise CVE-2008-4645 (plugins/event_tracer/event_list.php in PhpWebGallery 1.7.2 and earlier ...) @@ -207,7 +207,7 @@ CVE-2008-4640 (The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ...) TODO: check CVE-2008-4639 (jhead.c in Matthias Wandel jhead before 2.84 allows local users to ...) - TODO: check + - jhead 2.84-1 (low) CVE-2008-4638 (qioadmin in the Quick I/O for Database feature in Symantec Veritas ...) NOT-FOR-US: Symantec VxFS CVE-2008-4637 (Cross-site scripting (XSS) vulnerability in cpCommerce before 1.2.4 ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r10154 - data/CVE
Author: fw Date: 2008-10-23 18:50:12 + (Thu, 23 Oct 2008) New Revision: 10154 Modified: data/CVE/list Log: CVE-2008-2469: libspf2 Modified: data/CVE/list === --- data/CVE/list 2008-10-23 18:15:25 UTC (rev 10153) +++ data/CVE/list 2008-10-23 18:50:12 UTC (rev 10154) @@ -5279,6 +5279,7 @@ CVE-2008-2469 RESERVED {DTSA-172-1} + - libspf2 unfixed (high) CVE-2008-2468 (Multiple buffer overflows in the QIP Server Service (aka qipsrvr.exe) ...) NOT-FOR-US: LANDesk Management Suite CVE-2008-2467 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9834 - data/CVE
Author: fw Date: 2008-09-16 21:01:22 + (Tue, 16 Sep 2008) New Revision: 9834 Modified: data/CVE/list Log: CVE-2008-4109: openssh CVE-2006-5051: openssh, actually relevant Modified: data/CVE/list === --- data/CVE/list 2008-09-16 20:41:56 UTC (rev 9833) +++ data/CVE/list 2008-09-16 21:01:22 UTC (rev 9834) @@ -1,3 +1,9 @@ +CVE-2008-4109 [unsafe sigdie function called by signal handler] + {CVE-2006-5051} + - openssh 1:4.6p1-1 (low) + NOTE: The patch backported for CVE-2006-5051 was incorrect and did not + NOTE: fully address the issue. The upstream fix in 4.4p1 was + NOTE: right, and it the next unstable upload after that was 4.6p1. CVE-2008-4100 [adns predictable transaction id's and source port] - adns unfixed (unimportant; bug #492698) NOTE: adns is not supported in untrusted contexts, see BR @@ -31220,7 +31226,7 @@ - openssh 1:4.6p1-1 (low) CVE-2006-5051 (Signal handler race condition in OpenSSH before 4.4 allows remote ...) {DSA-1212 DSA-1189-1} - - openssh 1:4.3p2-4 (unimportant) + - openssh 1:4.6p1-1 (low) - openssh-krb5 removed (high) NOTE: From my analysis only openssh with Kerberos support should be vulnerable NOTE: However, we'll fix openssh as well just to make sure ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9822 - data/CVE
Author: fw Date: 2008-09-15 09:34:19 + (Mon, 15 Sep 2008) New Revision: 9822 Modified: data/CVE/list Log: CVE-2008-3195: twiki Modified: data/CVE/list === --- data/CVE/list 2008-09-15 09:14:14 UTC (rev 9821) +++ data/CVE/list 2008-09-15 09:34:19 UTC (rev 9822) @@ -1898,6 +1898,9 @@ NOTE: http://www.mozilla.org/security/announce/2008/mfsa2008-35.html CVE-2008-3195 RESERVED + - twiki unfixed (low) + NOTE: http://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2008-3195 + NOTE: access to configure script is restricted to localhost on Debian CVE-2008-3194 (Multiple directory traversal vulnerabilities in ...) NOT-FOR-US: pluck CMS CVE-2008-3193 (SQL injection vulnerability in jSite 1.0 OE allows remote attackers to ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9715 - data/CVE
Author: fw Date: 2008-08-31 15:58:49 + (Sun, 31 Aug 2008) New Revision: 9715 Modified: data/CVE/list Log: Heap over flow in GNU ed already fixed in unstable Modified: data/CVE/list === --- data/CVE/list 2008-08-31 15:53:58 UTC (rev 9714) +++ data/CVE/list 2008-08-31 15:58:49 UTC (rev 9715) @@ -6,6 +6,9 @@ - bitlbee 1.2.2-1 NOTE: CVE id requested on oss-sec end claimed by white +CVE-2008- [GNU ed: heap overflow in CLI processing] + - ed 0.7-2 (low) + NOTE: http://lists.gnu.org/archive/html/bug-ed/2008-06/msg0.html CVE-2008- [radiance: insecure temp files] - radiance 3R9+20080530-4 (low; bug #496433) CVE-2008-3844 (Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9716 - data/CVE
Author: fw Date: 2008-08-31 16:12:50 + (Sun, 31 Aug 2008) New Revision: 9716 Modified: data/CVE/list Log: CVE-2008-3659: php5 Modified: data/CVE/list === --- data/CVE/list 2008-08-31 15:58:49 UTC (rev 9715) +++ data/CVE/list 2008-08-31 16:12:50 UTC (rev 9716) @@ -527,7 +527,10 @@ CVE-2008-3660 (PHP 4.4.x before 4.4.9 and PHP 5.6 through 5.2.6, when used as a ...) TODO: check CVE-2008-3659 (Buffer overflow in the memnstr function in PHP 4.4.x before 4.4.9 and ...) - TODO: check + - php4 removed + - php5 unfixed (medium) + NOTE: php5 -d memory_limit=256M -r '$res = explode(str_repeat(A,14599),1);' + NOTE: (From upstream's ext/standard/tests/strings/explode_bug.phpt) CVE-2008-3658 (Buffer overflow in the imageloadfont function in ext/gd/gd.c in PHP ...) TODO: check CVE-2008-3657 (The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9693 - data/CVE
Author: fw Date: 2008-08-29 09:36:59 + (Fri, 29 Aug 2008) New Revision: 9693 Modified: data/CVE/list Log: NFU Modified: data/CVE/list === --- data/CVE/list 2008-08-28 21:14:12 UTC (rev 9692) +++ data/CVE/list 2008-08-29 09:36:59 UTC (rev 9693) @@ -99,7 +99,7 @@ CVE-2008-3796 (Swfdec 0.6 before 0.6.8 allows remote attackers to cause a denial of ...) TODO: check CVE-2008-3795 (Buffer overflow in Ipswitch WS_FTP Home client allows remote FTP ...) - TODO: check + NOT-FOR-US: WS_FTP Home CVE-2008-3793 RESERVED CVE-2008-3792 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9695 - data/CVE
Author: fw Date: 2008-08-29 09:50:41 + (Fri, 29 Aug 2008) New Revision: 9695 Modified: data/CVE/list Log: NFU Modified: data/CVE/list === --- data/CVE/list 2008-08-29 09:44:26 UTC (rev 9694) +++ data/CVE/list 2008-08-29 09:50:41 UTC (rev 9695) @@ -9,7 +9,7 @@ CVE-2008-3841 (Cross-site scripting (XSS) vulnerability in admin/search_links.php in ...) TODO: check CVE-2008-3840 (Crafty Syntax Live Help (CSLH) 2.14.6 and earlier stores passwords in ...) - TODO: check + NOT-FOR-US: Crafty Syntax Live Help (CSLH) CVE-2008-3839 (Unspecified vulnerability in the NFS module in the kernel in Sun ...) TODO: check CVE-2008-3838 (Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9697 - data/CVE
Author: fw Date: 2008-08-29 09:54:48 + (Fri, 29 Aug 2008) New Revision: 9697 Modified: data/CVE/list Log: NFU Modified: data/CVE/list === --- data/CVE/list 2008-08-29 09:53:00 UTC (rev 9696) +++ data/CVE/list 2008-08-29 09:54:48 UTC (rev 9697) @@ -1,7 +1,7 @@ CVE-2008- [radiance: insecure temp files] - radiance 3R9+20080530-4 (low; bug #496433) CVE-2008-3844 (Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, ...) - TODO: check + NOT-FOR-US: Red Hat services issue CVE-2008-3843 (Request Validation (aka the ValidateRequest filters) in ASP.NET in ...) TODO: check CVE-2008-3842 (Request Validation (aka the ValidateRequest filters) in ASP.NET in ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9696 - data/CVE
Author: fw Date: 2008-08-29 09:53:00 + (Fri, 29 Aug 2008) New Revision: 9696 Modified: data/CVE/list Log: NFU Modified: data/CVE/list === --- data/CVE/list 2008-08-29 09:50:41 UTC (rev 9695) +++ data/CVE/list 2008-08-29 09:53:00 UTC (rev 9696) @@ -7,7 +7,7 @@ CVE-2008-3842 (Request Validation (aka the ValidateRequest filters) in ASP.NET in ...) TODO: check CVE-2008-3841 (Cross-site scripting (XSS) vulnerability in admin/search_links.php in ...) - TODO: check + NOT-FOR-US: Freeway eCommerce CVE-2008-3840 (Crafty Syntax Live Help (CSLH) 2.14.6 and earlier stores passwords in ...) NOT-FOR-US: Crafty Syntax Live Help (CSLH) CVE-2008-3839 (Unspecified vulnerability in the NFS module in the kernel in Sun ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9556 - data/DSA
Author: fw Date: 2008-08-11 05:05:35 + (Mon, 11 Aug 2008) New Revision: 9556 Modified: data/DSA/list Log: DSA-1628-1: pdns Modified: data/DSA/list === --- data/DSA/list 2008-08-11 02:48:44 UTC (rev 9555) +++ data/DSA/list 2008-08-11 05:05:35 UTC (rev 9556) @@ -1,3 +1,6 @@ +[10 Aug 2008] DSA-1628-1 pdns - DNS spoofing + {CVE-2008-3337} + [etch] - pdns 2.9.20-8+etch1 [04 Aug 2008] DSA-1627-1 opensc - smart card vulnerability {CVE-2008-2235} [etch] - opensc 0.11.1-2etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9267 - data/CVE
Author: fw Date: 2008-07-09 08:55:33 + (Wed, 09 Jul 2008) New Revision: 9267 Modified: data/CVE/list Log: CVE-2008-1447: add more DNS implementations Modified: data/CVE/list === --- data/CVE/list 2008-07-08 23:15:14 UTC (rev 9266) +++ data/CVE/list 2008-07-09 08:55:33 UTC (rev 9267) @@ -3628,10 +3628,15 @@ RESERVED CVE-2008-1448 RESERVED -CVE-2008-1447 +CVE-2008-1447 [lack of source port randomization in DNS resolvers] RESERVED {DSA-1603-1} - - bind9 1:9.5.0.dfsg-5 + - bind9 1:9.5.0.dfsg-5 (high) + - glibc unfixed (medium) + - dnsmasq unfixed (medium) + - pdnsd unfixed (medium) + NOTE: Unbound and PowerDNS are affected by the underlying protocol issue, but + NOTE: already use source port randomization. CVE-2008-1446 RESERVED CVE-2008-1445 (Active Directory on Microsoft Windows 2000 Server SP4, XP Professional ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9246 - data/CVE
Author: fw Date: 2008-07-06 13:35:42 + (Sun, 06 Jul 2008) New Revision: 9246 Modified: data/CVE/list Log: CVE-2008-2927: pidgin Modified: data/CVE/list === --- data/CVE/list 2008-07-06 09:34:51 UTC (rev 9245) +++ data/CVE/list 2008-07-06 13:35:42 UTC (rev 9246) @@ -1,3 +1,5 @@ +CVE-2008-2927 [integer overflow in MSN protocol handler involing SLP messages] + - pidgin 2.4.3-1 CVE-2008- [wireshark has several potential DoS vulnerabilities] - wireshark 1.0.1-1 (low; bug #488834) NOTE: http://www.wireshark.org/security/wnpa-sec-2008-03.html ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9230 - data/CVE
Author: fw Date: 2008-07-04 19:05:19 + (Fri, 04 Jul 2008) New Revision: 9230 Modified: data/CVE/list Log: CVE-2008-2371: pcre3 Modified: data/CVE/list === --- data/CVE/list 2008-07-04 13:41:10 UTC (rev 9229) +++ data/CVE/list 2008-07-04 19:05:19 UTC (rev 9230) @@ -1041,8 +1041,9 @@ [etch] - linux-2.6 not-affected (Introduced between 2.6.23 and 2.6.24) - linux-2.6.24 unfixed NOTE: 89f5b7da2a6bad2e84670422ab8192382a5aeb9f -CVE-2008-2371 +CVE-2008-2371 [heap-based overflow in PCRE compiler for patterns with options and multiple branches] RESERVED + - pcre3 unfixed (medium) CVE-2008-2370 RESERVED CVE-2008-2369 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9090 - lib/python
Author: fw Date: 2008-06-17 19:52:49 + (Tue, 17 Jun 2008) New Revision: 9090 Modified: lib/python/security_db.py Log: lib/python/security_db.py: Do not detect binary package notes Modified: lib/python/security_db.py === --- lib/python/security_db.py 2008-06-17 12:24:38 UTC (rev 9089) +++ lib/python/security_db.py 2008-06-17 19:52:49 UTC (rev 9090) @@ -985,7 +985,7 @@ % (b.source_file, b.source_line, `rel`, rel_ver)) if self.verbose: -print checking source/binary packages +print checking source packages cursor.execute( UPDATE package_notes SET package_kind = 'unknown' WHERE package_kind IN ('source', 'binary')) @@ -999,40 +999,7 @@ WHERE package_kind = 'unknown' AND EXISTS (SELECT * FROM removed_packages AS p WHERE p.name = package_notes.package)) -cursor.execute( -UPDATE package_notes SET package_kind = 'binary' -WHERE package_kind = 'unknown' -AND EXISTS (SELECT * FROM binary_packages AS p -WHERE p.name = package_notes.package)) -for (bug_name, s_package, b_package) in list(cursor.execute( -SELECT DISTINCT s.bug_name, s.package, b.package -FROM package_notes AS s, package_notes AS b, binary_packages AS p -WHERE s.bug_name = b.bug_name -AND s.package_kind = 'source' -AND b.package_kind = 'binary' -AND p.name = b.package AND p.source = s.package)): -b = bugs.BugFromDB(cursor, bug_name) -result.append(%s:%d: source and binary package annotations - % (b.source_file, b.source_line)) -result.append(%s:%d: source package: %s - % (b.source_file, b.source_line, s_package)) -result.append(%s:%d: binary package: %s - % (b.source_file, b.source_line, b_package)) - -for (bug_name, package, s1, s2) in list(cursor.execute( -SELECT n.bug_name, n.package, -MIN(bp.source) AS s1, MAX (bp.source) AS s2 -FROM package_notes AS n, binary_packages AS bp -WHERE n.package_kind = 'binary' AND bp.name = n.package -GROUP BY n.bug_name, n.package -HAVING s1 s2)): -b = bugs.BugFromDB(cursor, bug_name) -result.append(%s:%d: multiple source packages for package %s - % (b.source_file, b.source_line, package)) -result.append(%s:%d: candidates are %s and %s - % (b.source_file, b.source_line, s1, s2)) - for (bug_name, package) in list(cursor.execute( SELECT n.bug_name, n.package FROM package_notes AS n @@ -1045,35 +1012,6 @@ result.append(%s:%d: ITPed package %s is in the archive % (b.source_file, b.source_line, package)) -if False: -# The following check looks useful, but there are -# situations where we want to be very explicit about -# vulnerable binary packges (see CAN-2004-0914 and -# DSA-573-1). -for (bug_name, source_package, b1, b2) in list(cursor.execute( -SELECT n.bug_name, b.source, -MIN(n.package) AS n1, MAX(n.package) AS n2 -FROM package_notes AS n, binary_packages AS b -WHERE n.package_kind = 'binary' AND b.name = n.package -GROUP BY n.bug_name, b.source -HAVING n1 n2)): -b = bugs.BugFromDB(cursor, bug_name) -result.append( -%s:%d: source package %s is referenced multiple times: - % (b.source_file, b.source_line, source_package)) -result.append(%s:%d: binary package: %s - % (b.source_file, b.source_line, b1)) -result.append(%s:%d: binary package: %s - % (b.source_file, b.source_line, b2)) - -for (bug_name, pkg_name, release) in list(cursor.execute( -SELECT DISTINCT bug_name, package, release FROM package_notes -WHERE package_kind = 'binary' AND release '')): -b = bugs.BugFromDB(cursor, bug_name) -result.append(%s:%d: binary package %s used with release %s - % (b.source_file, b.source_line, `pkg_name`, - `release`)) - if result: return result ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9091 - lib/python
Author: fw Date: 2008-06-17 19:52:51 + (Tue, 17 Jun 2008) New Revision: 9091 Added: lib/python/dist_config.py Log: lib/python/dist_config.py: New file Added: lib/python/dist_config.py === --- lib/python/dist_config.py (rev 0) +++ lib/python/dist_config.py 2008-06-17 19:52:51 UTC (rev 9091) @@ -0,0 +1,75 @@ +# dist_config.py -- describe how the Debian package database is assembled +# Copyright (C) 2008 Florian Weimer [EMAIL PROTECTED] +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA + + +This Python moule describes how different views of the Debian package +database are assembled from a set of on-disk files. + +Each view is labeled by a purpose. Currently defined purposes are: + + overview: Used to generate the release overview web page. This +should not contain vulnerabilities which the security team +considers processed. + + debsecan: Used to generate the fix is available data for debsecan. +This should reflect the recommended set of sources.list +entries for the release. + + +## +# Configuration section +## + +def apply_config(): +# Invoked at the end of the file. Edit this to suit your needs. + +etch_archs = 'alpha,amd64,arm,hppa,i386,ia64,mips,mipsel,powerpc,s390,sparc'.split(',') +lenny_archs = etch_archs + ['armel',] + +add_release(name='etch', +architectures=etch_archs, +) + +add_release(name='lenny', +architectures=lenny_archs, +) + +add_release(name='sid', +architectures=lenny_archs, +) + +## +# Support routines +## + +releases = {} + +def add_release(name, architectures, +debsecan_part=('', 'security'), +overview_part=('', 'security', 'proposed-updates')): +import debian_support +name = debian_support.internRelease(name) +if releases.has_key(name): +raise ValueError(duplicate release, name) +releases[name] = {'architectures' : architectures, + 'purpose' : {'debsecan' : debsecan_part, + 'overview' : overview_part}} + +# Run the code in the configuration section + +apply_config() +del apply_config ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r9094 - data/DSA
Author: fw Date: 2008-06-17 19:53:04 + (Tue, 17 Jun 2008) New Revision: 9094 Modified: data/DSA/list Log: DSA-1576-1: Do not mark openssh as vulnerable Modified: data/DSA/list === --- data/DSA/list 2008-06-17 19:53:00 UTC (rev 9093) +++ data/DSA/list 2008-06-17 19:53:04 UTC (rev 9094) @@ -65,7 +65,9 @@ [etch] - gforge 4.5.14-22etch8 [14 May 2008] DSA-1576-1 openssh openssh-blacklist - predictable randomness {CVE-2007-4752 CVE-2008-0166 CVE-2008-1483 CVE-2008-2285} - [etch] - openssh 1:4.3p2-9etch2 + NOTE: [etch] - openssh 1:4.3p2-9etch2 + NOTE: The package should not be flagged as vulnerable because this is just + NOTE: a band-aid for DSA-1571-1. [12 May 2008] DSA-1575-1 linux-2.6 - denial of service {CVE-2008-1669} [etch] - linux-2.6 2.6.18.dfsg.1-18etch4 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8959 - data/CVE
Author: fw Date: 2008-06-02 18:21:36 + (Mon, 02 Jun 2008) New Revision: 8959 Modified: data/CVE/list Log: Replace binary package names with source package names Modified: data/CVE/list === --- data/CVE/list 2008-06-02 18:20:36 UTC (rev 8958) +++ data/CVE/list 2008-06-02 18:21:36 UTC (rev 8959) @@ -454,7 +454,7 @@ CVE-2008-2281 (Cross-zone scripting vulnerability in the Print Table of Links feature ...) NOT-FOR-US: Internet Explorer CVE-2005-4875 (TYPO3 3.8.0 and earlier allows remote attackers to obtain sensitive ...) - - typo3 4.0.2-1 + - typo3-src 4.0.2-1 CVE-2008-2280 (Cross-site scripting (XSS) vulnerability in admin/index.php in Script ...) NOT-FOR-US: PHP PicEngine CVE-2008-2279 (Freelance Auction Script 1.0 stores user passwords in plaintext in the ...) @@ -2365,7 +2365,7 @@ CVE-2008-1430 (SQL injection vulnerability in links.asp in ASPapp allows remote ...) NOT-FOR-US: ASPapp CVE-2008-1429 (Secure Internet Live Conferencing (SILC) Server before 1.1.1 allows ...) - - silcd 1.1.1-1 (medium) + - silc-server 1.1.1-1 (medium) CVE-2008-1428 (Multiple cross-site scripting (XSS) vulnerabilities in the Ubercart ...) NOT-FOR-US: Ubercart CVE-2008-1427 (SQL injection vulnerability in the Joobi Acajoom (com_acajoom) 1.1.5 ...) @@ -8322,7 +8322,7 @@ CVE-2007-5687 (Multiple buffer overflows in the rich text processing functionality in ...) NOT-FOR-US: JustSystems Ichitaro CVE-2007-5686 (initscripts in rPath Linux 1 sets insecure permissions for the ...) - - login unfixed (unimportant) + - shadow unfixed (unimportant) NOTE: See #290803, on Debian LOG_UNKFAIL_ENAB in login.defs is set to no so NOTE: unknown usernames are not recorded on login failures CVE-2007-5685 (The safe_path function in shttp before 0.0.5 allows remote attackers ...) @@ -10136,7 +10136,7 @@ CVE-2004-2723 (NessusWX 1.4.4 stores account passwords in plaintext in .session ...) NOT-FOR-US: NessusWXdd CVE-2004-2722 (** DISPUTED ** ...) - - nessus unfixed (unimportant) + - nessus-core unfixed (unimportant) NOTE: this is no security issue assuming correct permissions CVE-2004-2721 (The CheckGroup function in openSkat VTMF before 2.1 generates public ...) NOT-FOR-US: openSkat @@ -10693,8 +10693,8 @@ [etch] - mp no-dsa (Minor issue) NOTE: Can be fixed in a point update CVE-2007-5019 (Buffer overflow in the Sun Java Web Start ActiveX control in Java ...) - - sun-java6-jre unfixed (unimportant) - - sun-java5-jre unfixed (unimportant) + - sun-java6 unfixed (unimportant) + - sun-java5 unfixed (unimportant) NOTE: exploiting this would not work under Linux CVE-2007-5018 (Stack-based buffer overflow in IMAPD in Mercury/32 4.52 allows remote ...) NOT-FOR-US: Pegasus Mail Mercury @@ -11410,8 +11410,8 @@ CVE-2007-4725 (Stack consumption vulnerability in AkkyWareHOUSE 7-zip32.dll before ...) NOT-FOR-US: AkkyWareHOUSE CVE-2007-4724 (Cross-site request forgery (CSRF) vulnerability in cal2.jsp in the ...) - - tomcat5.5-webapps not-affected (Version already ships fixed files) - - tomcat5-webapps unfixed (unimportant; bug #441205) + - tomcat5.5 not-affected (Version already ships fixed files) + - tomcat5 unfixed (unimportant; bug #441205) - libservlet2.4-java 5.0.30-6 (unimportant) NOTE: DSA should not be required, minor issue, jsp just present as example CVE-2007-4723 (Directory traversal vulnerability in Ragnarok Online Control Panel ...) @@ -12596,7 +12596,7 @@ CVE-2007-4230 (** DISPUTED ** ...) NOT-FOR-US: BellaBiblio CVE-2007-4229 (Unspecified vulnerability in KDE Konqueror 3.5.7 and earlier allows ...) - - konqueror unfixed (unimportant) + - kdebase unfixed (unimportant) NOTE: Browser DoS not treated as vulnerabilities CVE-2007-4228 (rmpvc on IBM AIX 4.3 allows local users to cause a denial of service ...) NOT-FOR-US: AIX @@ -12974,9 +12974,9 @@ - drupal5 5.2-1 (low) NOTE: DRUPAL-SA-2007-017 CVE-2007-4062 (The SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll in Nessus ...) - - nessus not-affected (Windows only) + - nessus-core not-affected (Windows only) CVE-2007-4061 (Directory traversal vulnerability in a certain ActiveX control in ...) - - nessus not-affected (Windows only) + - nessus-core not-affected (Windows only) CVE-2007-4060 (Multiple buffer overflows in the HttpSprockMake function in http.c in ...) NOT-FOR-US: corehttp CVE-2007-4059 (Absolute path traversal vulnerability in a certain ActiveX control in ...) @@ -13006,7 +13006,7 @@ - phpsysinfo 2.5.1-6.1 (unimportant; bug #435935) - phpgroupware 0.9.16.012-1 (low; bug #435936) [etch] - phpgroupware not-affected (Affected code
[Secure-testing-commits] r8950 - /
Author: fw Date: 2008-05-31 20:32:17 + (Sat, 31 May 2008) New Revision: 8950 Modified: Makefile Log: Makefile: only copy security.db if it exists Modified: Makefile === --- Makefile2008-05-31 14:00:54 UTC (rev 8949) +++ Makefile2008-05-31 20:32:17 UTC (rev 8950) @@ -12,7 +12,7 @@ all: rm -f data/security-new.db data/security-new.db.journal - cp data/security.db data/security-new.db + if test -e data/security.db; then cp data/security.db data/security-new.db; fi $(PYTHON) bin/update-db data/security-new.db mv data/security-new.db data/security.db ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8951 - lib/python
Author: fw Date: 2008-05-31 20:32:27 + (Sat, 31 May 2008) New Revision: 8951 Modified: lib/python/debian_support.py Log: lib/python/debian_support.py: Fix PseudoEnum.__repr__ method Modified: lib/python/debian_support.py === --- lib/python/debian_support.py2008-05-31 20:32:17 UTC (rev 8950) +++ lib/python/debian_support.py2008-05-31 20:32:27 UTC (rev 8951) @@ -148,7 +148,7 @@ self._name = name self._order = order def __repr__(self): -return '%s(%s)'% (self.__class__._name__, `name`) +return '%s(%s)'% (self.__class__.__name__, `self._name`) def __str__(self): return self._name def __cmp__(self, other): @@ -433,5 +433,7 @@ assert len(mergeAsSets([])) == 0 assert ''.join(mergeAsSets(abc, cb)) == abc +assert repr(internRelease(sid)) == Release('sid') + if __name__ == __main__: test() ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8857 - / bin lib/python
Author: fw Date: 2008-05-21 08:30:08 + (Wed, 21 May 2008) New Revision: 8857 Modified: Makefile bin/tracker_service.py lib/python/security_db.py Log: Remove oldstable from the tracker Modified: Makefile === --- Makefile2008-05-21 03:35:49 UTC (rev 8856) +++ Makefile2008-05-21 08:30:08 UTC (rev 8857) @@ -7,7 +7,7 @@ # MIRROR = http://merkel.debian.org/~aba/debian/ MIRROR = http://ftp-stud.fht-esslingen.de/debian/ -SARGE_ARCHS = alpha amd64 arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc +ETCH_ARCHS = alpha amd64 arm hppa i386 ia64 mips mipsel powerpc s390 sparc LENNY_ARCHS = alpha amd64 arm hppa i386 ia64 mips mipsel powerpc s390 sparc all: @@ -69,12 +69,12 @@ SEC_MIRROR = http://security.debian.org/dists update-security: - for archive in sarge etch ; do \ + for archive in etch ; do \ for section in main contrib non-free ; do \ $(PYTHON) bin/apt-update-file \ $(SEC_MIRROR)/$$archive/updates/$$section/source/Sources \ data/packages/$${archive}_security_$${section}_Sources ; \ - for arch in $(SARGE_ARCHS) ; do \ + for arch in $(ETCH_ARCHS) ; do \ $(PYTHON) bin/apt-update-file \ $(SEC_MIRROR)/$$archive/updates/$$section/binary-$$arch/Packages \ data/packages/$${archive}_security_$${section}_$${arch}_Packages ; \ Modified: bin/tracker_service.py === --- bin/tracker_service.py 2008-05-21 03:35:49 UTC (rev 8856) +++ bin/tracker_service.py 2008-05-21 08:30:08 UTC (rev 8857) @@ -160,8 +160,6 @@ 'Vulnerable packages in the testing suite'), ('status/release/stable', 'Vulnerable packages in the stable suite'), -('status/release/oldstable', - 'Vulnerable packages in the oldstable suite'), ('status/dtsa-candidates', Candidates for DTSAs), ('status/todo', 'TODO items'), ('status/itp', 'ITPs with potential security issues'), Modified: lib/python/security_db.py === --- lib/python/security_db.py 2008-05-21 03:35:49 UTC (rev 8856) +++ lib/python/security_db.py 2008-05-21 08:30:08 UTC (rev 8857) @@ -386,7 +386,7 @@ AND sp.subrelease = '' ORDER BY sp.name, st.urgency, st.bug_name) -for (name, nickname) in (('stable', 'etch'), ('oldstable', 'sarge')): +for (name, nickname) in (('stable', 'etch')): cursor.execute( CREATE VIEW %s_status AS SELECT DISTINCT sp.name AS package, st.bug_name AS bug, @@ -1190,7 +1190,6 @@ self._calcUnstable(c, bug_name) self._calcTesting(c, bug_name, 'testing', 'lenny') self._calcTesting(c, bug_name, 'stable', 'etch') -self._calcTesting(c, bug_name, 'oldstable', 'sarge') return result @@ -1614,7 +1613,7 @@ store_value('release/1/' + release, '\n'.join(result)) -for release in ('sid', 'etch', 'lenny', 'sarge'): +for release in ('sid', 'etch', 'lenny'): gen_release(release) result = result_start @@ -1627,7 +1626,7 @@ def calculateDebsecan(self): Calculate all debsecan data. -for release in ('', 'sarge', 'etch', 'lenny'): +for release in ('', 'etch', 'lenny'): self.calculateDebsecan0(release) self.calculateDebsecan1() ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8853 - in data: CVE DSA
Author: fw Date: 2008-05-20 17:19:16 + (Tue, 20 May 2008) New Revision: 8853 Modified: data/CVE/list data/DSA/list Log: DSA-1581-1: gnutls13 Modified: data/CVE/list === --- data/CVE/list 2008-05-20 14:39:53 UTC (rev 8852) +++ data/CVE/list 2008-05-20 17:19:16 UTC (rev 8853) @@ -709,10 +709,13 @@ RESERVED CVE-2008-1950 RESERVED + - gnutls13 unfixed (low) CVE-2008-1949 RESERVED + - gnutls13 unfixed (low) CVE-2008-1948 RESERVED + - gnutls13 unfixed (medium) CVE-2008-1947 RESERVED CVE-2008-1946 Modified: data/DSA/list === --- data/DSA/list 2008-05-20 14:39:53 UTC (rev 8852) +++ data/DSA/list 2008-05-20 17:19:16 UTC (rev 8853) @@ -1,3 +1,6 @@ +[20 May 2008] DSA-1581-1 gnutls13 - potential code execution + {CVE-2008-1948 CVE-2008-1949 CVE-2008-1950} + [etch] - gnutls13 1.4.4-3+etch1 [20 May 2008] DSA-1580-1 phpgedview - privilege escalation {CVE-2008-2064} [etch] - phpgedview 4.0.2.dfsg-4 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8693 - data/CVE
Author: fw Date: 2008-05-04 07:39:53 + (Sun, 04 May 2008) New Revision: 8693 Modified: data/CVE/list Log: CVE-2005-3625: fix tetex mistake Modified: data/CVE/list === --- data/CVE/list 2008-05-04 06:56:45 UTC (rev 8692) +++ data/CVE/list 2008-05-04 07:39:53 UTC (rev 8693) @@ -40916,7 +40916,7 @@ CVE-2005-3625 (Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, ...) {DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1} - poppler 0.4.4-1 (bug #346076) - - tetex 3.0-12 + - tetex-bin 3.0-12 - kdegraphics 4:3.5.0-3 - xpdf 3.01-4 - gpdf 2.10.0-2 (bug #342286) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8695 - data/CVE
Author: fw Date: 2008-05-04 08:00:32 + (Sun, 04 May 2008) New Revision: 8695 Modified: data/CVE/list Log: CVE-2007-2833: emacs22 not affected, emacs-snapshot removed Modified: data/CVE/list === --- data/CVE/list 2008-05-04 07:50:57 UTC (rev 8694) +++ data/CVE/list 2008-05-04 08:00:32 UTC (rev 8695) @@ -14921,7 +14921,9 @@ CVE-2007-2833 (Emacs 21 allows user-assisted attackers to cause a denial of service ...) {DSA-1316-1} - emacs21 21.4a+1-5.1 (bug #408929; low) - - emacs-snapshot unfixed + - emacs-snapshot removed + NOTE: The bug is not present in emacs22 22.2+1-1. It was probably + NOTE: fixed before the first emacs22 upload. CVE-2007-2832 (Cross-site scripting (XSS) vulnerability in the web application ...) NOT-FOR-US: Cisco CVE-2007-2831 (Array index error in the (1) ieee80211_ioctl_getwmmparams and (2) ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8696 - data/packages
Author: fw Date: 2008-05-04 08:11:37 + (Sun, 04 May 2008) New Revision: 8696 Modified: data/packages/removed-packages Log: Add a few removed kernel packages Modified: data/packages/removed-packages === --- data/packages/removed-packages 2008-05-04 08:00:32 UTC (rev 8695) +++ data/packages/removed-packages 2008-05-04 08:11:37 UTC (rev 8696) @@ -6,6 +6,50 @@ kernel-source-2.6.9 kernel-source-2.6.10 kernel-source-2.6.11 +kernel-image-2.2.10-powerpc-apus +kernel-image-2.2.19-netwinder +kernel-image-2.2.19-riscpc +kernel-image-2.2.20-amiga +kernel-image-2.2.20-atari +kernel-image-2.2.20-bvme6000 +kernel-image-2.2.20-i386 +kernel-image-2.2.20-mac +kernel-image-2.2.20-mvme147 +kernel-image-2.2.20-mvme16x +kernel-image-2.2.20-reiserfs-i386 +kernel-image-2.2.22-alpha +kernel-image-2.2.25-i386 +kernel-image-2.4.16-lart +kernel-image-2.4.16-netwinder +kernel-image-2.4.16-riscpc +kernel-image-2.4.17-hppa +kernel-image-2.4.17-ia64 +kernel-image-2.4.17-s390 +kernel-image-2.4.18-1-alpha +kernel-image-2.4.18-1-i386 +kernel-image-2.4.18-hppa +kernel-image-2.4.18-i386 +kernel-image-2.4.18-i386bf +kernel-image-2.6.8-9-amd64-generic +kernel-image-sparc-2.4 +kernel-patch-2.2.19-arm +kernel-patch-2.2.20-powerpc +kernel-patch-2.4.16-arm +kernel-patch-2.4.17-apus +kernel-patch-2.4.17-mips +kernel-patch-2.4.17-mipsel +kernel-patch-2.4.17-s390 +kernel-patch-2.4.18-powerpc +kernel-patch-2.4.19-mips +kernel-patch-adamantix +kernel-patch-ctx +kernel-source-2.2.10 +kernel-source-2.2.19 +kernel-source-2.2.22 +kernel-source-2.4.16 +kernel-source-2.4.17 +kernel-source-2.4.18 +kernel-source-2.4.19 netjuke openwebmail xerces24 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8622 - data/DSA
Author: fw Date: 2008-04-27 09:20:47 + (Sun, 27 Apr 2008) New Revision: 8622 Modified: data/DSA/list Log: DSA-1556-2 brown paperbag release Modified: data/DSA/list === --- data/DSA/list 2008-04-27 09:14:23 UTC (rev 8621) +++ data/DSA/list 2008-04-27 09:20:47 UTC (rev 8622) @@ -10,9 +10,9 @@ [24 Apr 2008] DSA-1557-1 phpmyadmin - several vulnerabilities {CVE-2008-1149 CVE-2008-1567 CVE-2008-1924} [etch] - phpmyadmin 4:2.9.1.1-7 -[24 Apr 2008] DSA-1556-1 perl - denial of service +[24 Apr 2008] DSA-1556-2 perl - denial of service {CVE-2008-1927} - [etch] - perl 5.8.8-7etch2 + [etch] - perl 5.8.8-7etch3 [23 Apr 2008] DSA-1555-1 iceweasel - arbitrary code execution {CVE-2008-1380} [etch] - iceweasel 2.0.0.14-0etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8608 - data/CVE
Author: fw Date: 2008-04-25 07:34:40 + (Fri, 25 Apr 2008) New Revision: 8608 Modified: data/CVE/list Log: CVE-2008-1927: perl Modified: data/CVE/list === --- data/CVE/list 2008-04-25 06:51:21 UTC (rev 8607) +++ data/CVE/list 2008-04-25 07:34:40 UTC (rev 8608) @@ -1,3 +1,5 @@ +CVE-2008-1927 + - perl unfixed CVE-2008-1925 [remote trigger buffer overflow] - inspircd 1.1.18+dfsg-1 (low) CVE-2008-1924 [phpMyAdmin file disclosure] ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8582 - data/DSA
Author: fw Date: 2008-04-20 11:14:28 + (Sun, 20 Apr 2008) New Revision: 8582 Modified: data/DSA/list Log: DSA-1551-1, DSA-1552-1, DSA-1553-1 Modified: data/DSA/list === --- data/DSA/list 2008-04-19 21:14:14 UTC (rev 8581) +++ data/DSA/list 2008-04-20 11:14:28 UTC (rev 8582) @@ -1,3 +1,12 @@ +[20 Apr 2008] DSA-1553-1 ikiwiki - cross-site request forgery + {CVE-2008-0165} + [etch] - ikiwiki 1.33.5 +[19 Apr 2008] DSA-1552-1 mplayer - arbitrary code execution + {CVE-2008-1558} + [etch] - mplayer 1.0~rc1-12etch3 +[19 Apr 2008] DSA-1551-1 python2.4 - several vulnerabilities + {CVE-2007-2052 CVE-2007-4965 CVE-2008-1679 CVE-2008-1721 CVE-2008-1887} + [etch] - python2.4 2.4.4-3+etch1 [17 Apr 2008] DSA-1550-1 suphp {CVE-2008-1614} [etch] - suphp 0.6.2-1+etch0 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8586 - data/CVE
Author: fw Date: 2008-04-20 17:30:10 + (Sun, 20 Apr 2008) New Revision: 8586 Modified: data/CVE/list Log: CVE-2008-0165: ikiwiki fixed Modified: data/CVE/list === --- data/CVE/list 2008-04-20 16:05:38 UTC (rev 8585) +++ data/CVE/list 2008-04-20 17:30:10 UTC (rev 8586) @@ -3938,6 +3938,7 @@ RESERVED CVE-2008-0165 RESERVED + - ikiwiki 2.42 CVE-2008-0164 (Multiple cross-site request forgery (CSRF) vulnerabilities in Plone ...) - plone3 unfixed (bug #473571) CVE-2008-0163 (Linux kernel 2.6, when using vservers, allows local users to access ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8504 - data/DSA
Author: fw Date: 2008-04-09 21:37:13 + (Wed, 09 Apr 2008) New Revision: 8504 Modified: data/DSA/list Log: DSA-1542-1, DSA-1543-1, DSA-1544-1 Modified: data/DSA/list === --- data/DSA/list 2008-04-09 21:14:14 UTC (rev 8503) +++ data/DSA/list 2008-04-09 21:37:13 UTC (rev 8504) @@ -1,3 +1,12 @@ +[09 Apr 2008] DSA-1544-1 pdns-recursor - cache poisoning vulnerability + {CVE-2008-1637} + [etch] - pdns-recursor 3.1.4-1+etch1 +[09 Apr 2008] DSA-1543-1 vlc - several vulnerabilities + {CVE-2007-6681 CVE-2007-6682 CVE-2007-6683 CVE-2008-0073 CVE-2008-0295 CVE-2008-0296 CVE-2008-0984 CVE-2008-1489} + [etch] - vlc 0.8.6-svn20061012.debian-5.1+etch2 +[09 Apr 2008] DSA-1542-1 libcairo - arbitrary code execution + {CVE-2007-5503} + [etch] - libcairo 1.2.4-4.1+etch1 [08 Apr 2008] DSA-1541-1 openldap2.3 {CVE-2007-5707 CVE-2007-5708 CVE-2007-6698 CVE-2008-0658} [etch] - openldap2.3 2.3.30-5+etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8385 - data/CVE
Author: fw Date: 2008-03-22 09:49:09 + (Sat, 22 Mar 2008) New Revision: 8385 Modified: data/CVE/list Log: CVE-2008-0073: xine-lib Modified: data/CVE/list === --- data/CVE/list 2008-03-22 02:31:10 UTC (rev 8384) +++ data/CVE/list 2008-03-22 09:49:09 UTC (rev 8385) @@ -3076,8 +3076,10 @@ NOT-FOR-US: Microsoft Internet Explorer CVE-2008-0074 (Unspecified vulnerability in Microsoft Internet Information Services ...) NOT-FOR-US: Microsoft Internet Explorer -CVE-2008-0073 +CVE-2008-0073 [Array indexing vulnerability in Real SDP parsing] RESERVED + - xine-lib 1.1.11-1 (medium) + NOTE: http://bugs.xine-project.org/show_bug.cgi?id=58 CVE-2008-0072 (Format string vulnerability in the emf_multipart_encrypted function in ...) {DSA-1512-1} - evolution 2.12.3-1.1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8341 - data/CVE
Author: fw Date: 2008-03-16 11:21:57 + (Sun, 16 Mar 2008) New Revision: 8341 Modified: data/CVE/list Log: CVE-2007-6598: not DSA-worthy Modified: data/CVE/list === --- data/CVE/list 2008-03-16 09:14:10 UTC (rev 8340) +++ data/CVE/list 2008-03-16 11:21:57 UTC (rev 8341) @@ -3131,6 +3131,7 @@ {DSA-1457-1} - dovecot 1:1.0.10-1 (low; bug #458315) [sarge] - dovecot not-affected (Vulnerable code not present) + [etch] - dovecot no-dsa (very minor issue) NOTE: http://dovecot.org/list/dovecot-news/2007-December/57.html NOTE: low, because issue is only with quite rare configurations CVE-2007-6612 (Directory traversal vulnerability in DirHandler ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8333 - data/DSA
Author: fw Date: 2008-03-14 23:33:29 + (Fri, 14 Mar 2008) New Revision: 8333 Modified: data/DSA/list Log: DSA-1516-1: dovecot Modified: data/DSA/list === --- data/DSA/list 2008-03-14 18:47:58 UTC (rev 8332) +++ data/DSA/list 2008-03-14 23:33:29 UTC (rev 8333) @@ -1,3 +1,6 @@ +[14 Mar 2008] DSA-1516-1 dovecot - privilege escalation + {CVE-2008-1199 CVE-2008-1218} + [etch] - dovecot 1.0.rc15-2etch4 [11 Mar 2008] DSA-1515-1 libnet-dns-perl - several vulnerabilities {CVE-2007-3377 CVE-2007-3409 CVE-2007-6341} [sarge] - libnet-dns-perl 0.48-1sarge1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8315 - data/DSA
Author: fw Date: 2008-03-11 22:18:52 + (Tue, 11 Mar 2008) New Revision: 8315 Modified: data/DSA/list Log: DSA-1515: libnet-dns-perl Modified: data/DSA/list === --- data/DSA/list 2008-03-11 21:14:10 UTC (rev 8314) +++ data/DSA/list 2008-03-11 22:18:52 UTC (rev 8315) @@ -1,3 +1,7 @@ +[11 Mar 2008] DSA-1515-1 libnet-dns-perl - several vulnerabilities + {CVE-2007-3377 CVE-2007-3409 CVE-2007-6341} + [sarge] - libnet-dns-perl 0.48-1sarge1 + [etch] - libnet-dns-perl 0.59-1etch1 [09 Mar 2008] DSA-1514-1 moin {CVE-2007-2423 CVE-2007-2637 CVE-2008-0780 CVE-2008-0781 CVE-2008-0782 CVE-2008-1098 CVE-2008-1099} [etch] - moin 1.5.3-1.2etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8292 - data/CVE
Author: fw Date: 2008-03-09 08:05:38 + (Sun, 09 Mar 2008) New Revision: 8292 Modified: data/CVE/list Log: CVE-2008-1199: dovecot CVE assigned Modified: data/CVE/list === --- data/CVE/list 2008-03-08 22:54:13 UTC (rev 8291) +++ data/CVE/list 2008-03-09 08:05:38 UTC (rev 8292) @@ -5,7 +5,7 @@ [etch] - ruby1.8 no-dsa (case insensitive FS, corner case) [etch] - ruby1.9 no-dsa (case insensitive FS, corner case) NOTE: http://www.ruby-lang.org/en/news/2008/03/03/webrick-file-access-vulnerability/ -CVE-2008- [file disclosure in dovecot] +CVE-2008-1199 [file disclosure in dovecot] - dovecot 1:1.0.12-1 (medium; bug #469457) CVE-2008-1132 (Untrusted search path vulnerability in src/mainwindow.c in Net ...) NOT-FOR-US: Net Activity Viewer ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8250 - data/CVE
Author: fw Date: 2008-02-29 18:32:37 + (Fri, 29 Feb 2008) New Revision: 8250 Modified: data/CVE/list Log: CVE-2008-0595: dbus fixed Modified: data/CVE/list === --- data/CVE/list 2008-02-28 21:14:10 UTC (rev 8249) +++ data/CVE/list 2008-02-29 18:32:37 UTC (rev 8250) @@ -968,6 +968,7 @@ - cupsys not-affected (version in unstable has better array handling and is not vulnerable, exact version unknown) CVE-2008-0595 RESERVED + - dbus 1.1.20-1 CVE-2008-0594 (Mozilla Firefox before 2.0.0.12 does not always display a web forgery ...) {DSA-1506-1 DSA-1489-1 DSA-1485-1 DSA-1484-1} - iceweasel 2.0.0.12-1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8206 - data/DSA
Author: fw Date: 2008-02-23 22:38:03 + (Sat, 23 Feb 2008) New Revision: 8206 Modified: data/DSA/list Log: Add DSA-1503, DSA-1504, DSA-1505 Modified: data/DSA/list === --- data/DSA/list 2008-02-23 21:14:09 UTC (rev 8205) +++ data/DSA/list 2008-02-23 22:38:03 UTC (rev 8206) @@ -1,3 +1,44 @@ +[22 Feb 2008] DSA-1505-1 alsa-driver alsa-modules-i386 - kernel memory leak + {CVE-2007-4571} + [sarge] - alsa-driver 1.0.8-7sarge1 + [sarge] - alsa-modules-i386 1.0.8+2sarge2 + [etch] - alsa-driver 1.0.13-5etch1 +[22 Feb 2008] DSA-1504-1 kernel-image-2.6.8 - several issues + {CVE-2006-5823 CVE-2006-6054 CVE-2006-6058 CVE-2006-7203 CVE-2007-1353 CVE-2007-2172 CVE-2007-2525 CVE-2007-3105 CVE-2007-3739 CVE-2007-3740 CVE-2007-3848 CVE-2007-4133 CVE-2007-4308 CVE-2007-4573 CVE-2007-5093 CVE-2007-6063 CVE-2007-6151 CVE-2007-6206 CVE-2007-6694 CVE-2008-0007} + [sarge] - kernel-image-2.6.8-s390 2.6.8-6sarge1 + [sarge] - kernel-image-2.6.8-ia64 2.6.8-15sarge1 + [sarge] - fai-kernels 1.9.1sarge8 + [sarge] - kernel-image-2.6.8-amd64 2.6.8-17sarge1 + [sarge] - kernel-image-2.6.8-hppa 2.6.8-7sarge1 + [sarge] - kernel-image-2.6.8-sparc 2.6.8-16sarge1 + [sarge] - kernel-image-2.6.8-alpha 2.6.8-17sarge1 + [sarge] - kernel-image-2.6.8-i386 2.6.8-17sarge1 + [sarge] - kernel-source-2.6.8 2.6.8-17sarge1 + [sarge] - kernel-patch-powerpc-2.6.8 2.6.8-13sarge1 + [sarge] - kernel-image-2.6.8-m68k 2.6.8-5sarge1 +[22 Feb 2008] DSA-1503-1 kernelimage-2.4.27 - several issues + {CVE-2004-2731 CVE-2006-4814 CVE-2006-5753 CVE-2006-5823 CVE-2006-6053 CVE-2006-6054 CVE-2006-6106 CVE-2007-1353 CVE-2007-1592 CVE-2007-2172 CVE-2007-2525 CVE-2007-3848 CVE-2007-4308 CVE-2007-4311 CVE-2007-5093 CVE-2007-6063 CVE-2007-6151 CVE-2007-6206 CVE-2007-6694 CVE-2008-0007} + [sarge] - kernel-latest-2.4-i386 101sarge2 + [sarge] - kernel-image-2.4.27-alpha 2.4.27-10sarge6 + [sarge] - kernel-image-2.4.27-m68k 2.4.27-3sarge6 + [sarge] - i2c 1:2.9.1-1sarge2 + [sarge] - systemimager 3.2.3-6sarge5 + [sarge] - kernel-latest-2.4-alpha 101sarge3 + [sarge] - kernel-patch-powerpc-2.4.27 2.4.27-10sarge6 + [sarge] - kernel-latest-2.4-sparc 42sarge3 + [sarge] - kernel-patch-2.4.27-mips 2.4.27-10.sarge4.040815-3 + [sarge] - pcmcia-modules-2.4.27-i386 3.2.5+2sarge2 + [sarge] - kernel-image-2.4.27-ia64 2.4.27-10sarge6 + [sarge] - mindi-kernel 2.4.27-2sarge5 + [sarge] - lm-sensors 1:2.9.1-1sarge4 + [sarge] - kernel-latest-2.4-s390 2.4.27-1sarge2 + [sarge] - hostap-modules-i386 1:0.3.7-1sarge3 + [sarge] - kernel-image-speakup-i386 2.4.27-1.1sarge5 + [sarge] - kernel-source-2.4.27 2.4.27-10sarge6 + [sarge] - kernel-image-2.4.27-arm 2.4.27-2sarge6 + [sarge] - kernel-image-2.4.27-i386 2.4.27-10sarge6 + [sarge] - kernel-image-2.4.27-sparc 2.4.27-9sarge6 + [sarge] - kernel-image-2.4.27-s390 2.4.27-2sarge6 [22 Feb 2008] DSA-1502-1 wordpress - multiple vulnerabilities {CVE-2007-2821 CVE-2007-3238 CVE-2008-0193 CVE-2008-0194} [etch] - wordpress 2.0.10-1etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r8192 - data/DSA
Author: fw Date: 2008-02-19 22:13:39 + (Tue, 19 Feb 2008) New Revision: 8192 Modified: data/DSA/list Log: DSA-1499: pcre3 Modified: data/DSA/list === --- data/DSA/list 2008-02-19 21:14:24 UTC (rev 8191) +++ data/DSA/list 2008-02-19 22:13:39 UTC (rev 8192) @@ -1,3 +1,7 @@ +[19 Feb 2008] DSA-1499-1 pcre3 - arbitrary code execution + {CVE-2008-0674} + [sarge] - pcre3 4.5+7.4-2 + [etch] - pcre3 6.7+7.4-3 [19 Feb 2008] DSA-1498-1 libimager-perl - buffer overflow {CVE-2007-2459} [etch] - libimager-perl 0.50-1etch1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits