[Secure-testing-commits] r24080 - in data: CVE packages

Sun, 20 Oct 2013 12:16:36 -0700 

Author: thijs
Date: 2013-10-20 19:15:49 +0000 (Sun, 20 Oct 2013)
New Revision: 24080

Modified:
   data/CVE/list
   data/packages/removed-packages
Log:
more point release updates


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-10-20 16:35:05 UTC (rev 24079)
+++ data/CVE/list       2013-10-20 19:15:49 UTC (rev 24080)
@@ -15534,14 +15534,14 @@
 CVE-2013-0296 [creates temp files with too wide permissions]
        RESERVED
        - pigz 2.2.4-2 (low; bug #700608)
-       [squeeze] - pigz <no-dsa> (Minor issue)
+       [squeeze] - pigz 2.1.6-1+squeeze1
 CVE-2013-0295 [CreateID() creates serialized packet IDs for RADIUS]
        RESERVED
 CVE-2013-0294 [potentially predictable password hashing]
        RESERVED
        - pyrad 2.0-2 (low; bug #700669)
        [wheezy] - pyrad 1.2-1+deb7u2
-       [squeeze] - pyrad <no-dsa> (Minor issue)
+       [squeeze] - pyrad 1.2-1+deb6u1
 CVE-2013-0293 [Lock screen accepts F2 to drop to shell]
        RESERVED
        - ovirt-node <itp> (bug #502024)
@@ -17552,7 +17552,7 @@
 CVE-2012-5860 (Unspecified vulnerability on Oberthur ID-One COSMO 5.2, 5.2a, 
and 64 ...)
        NOT-FOR-US: ID-One COSMO
 CVE-2012-XXXX [xscreensaver lock bypass]
-       - libpam-rsa <unfixed> (low; bug #693087)
+       - libpam-rsa <removed> (low; bug #693087)
 CVE-2012-5859 (Samsung Kies Air 2.1.207051 and 2.1.210161 allows remote 
attackers to ...)
        NOT-FOR-US: Samsung Kies Air
 CVE-2012-5858 (Samsung Kies Air 2.1.207051 and 2.1.210161 relies on the IP 
address ...)
@@ -27539,7 +27539,7 @@
        NOTE: poppler upstream patch 
http://cgit.freedesktop.org/poppler/poppler/commit/?id=71bad47ed6a36d825b0d08992c8db56845c71e40
 CVE-2012-2141 (Array index error in the handle_nsExtendOutput2Table function 
in ...)
        - net-snmp 5.4.3~dfsg-2.5 (low; bug #672492)
-       [squeeze] - net-snmp <no-dsa> (Minor issue)
+       [squeeze] - net-snmp 5.4.3~dfsg-2+squeeze1
        NOTE:  Red Hat patch: 
https://bugzilla.redhat.com/attachment.cgi?id=580443&action=diff
 CVE-2012-2140 (The Mail gem before 2.4.3 for Ruby allows remote attackers to 
execute ...)
        - ruby-mail 2.4.4-1

Modified: data/packages/removed-packages
===================================================================
--- data/packages/removed-packages      2013-10-20 16:35:05 UTC (rev 24079)
+++ data/packages/removed-packages      2013-10-20 19:15:49 UTC (rev 24080)
@@ -248,3 +248,4 @@
 rageircd
 postgresql-9.0
 mysql-5.1
+libpam-rsa


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to