1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
|
[August 26th, 2005] DTSA-1-1 kismet - various
{CVE-2005-2626 CVE-2005-2627 }
[etch] - kismet 2005.08.R1-0.1etch1 (high)
[August 28th, 2005] DTSA-2-1 centericq - multiple vulnerabilities
{CVE-2005-2448 CVE-2005-2370 CVE-2005-2369 CVE-2005-1914 }
[etch] - centericq 4.20.0-8etch1 (medium)
[August 28th, 2005] DTSA-3-1 clamav - denial of service and privilege escalation
{CVE-2005-2070 CVE-2005-1923 CVE-2005-2056 CVE-2005-1922 CVE-2005-2450 }
[etch] - clamav 0.86.2-4etch1 (high)
[August 28th, 2005] DTSA-4-1 ekg - multiple vulnerabilities
{CVE-2005-1916 CVE-2005-1851 CVE-2005-1850 CVE-2005-1852 CVE-2005-2448 }
[etch] - ekg 1:1.5+20050808+1.6rc3-0etch1 (high)
[August 28th, 2005] DTSA-5-1 gaim - multiple remote vulnerabilities
{CVE-2005-2102 CVE-2005-2370 CVE-2005-2103 }
[etch] - gaim 1:1.4.0-5etch2 (high)
[August 28th, 2005] DTSA-6-1 cgiwrap - multiple vulnerabilities
{CVE-2005-3254 CVE-2005-3255}
[etch] - cgiwrap 3.9-3.0etch1 (medium)
[August 28th, 2005] DTSA-7-1 mozilla - frame injection spoofing
{CVE-2004-0718 CVE-2005-1937 }
[etch] - mozilla 2:1.7.8-1sarge1 (medium)
[September 1st, 2005] DTSA-8-2 mozilla-firefox - several vulnerabilities (update)
{CVE-2004-0718 CVE-2005-1937 CVE-2005-2260 CVE-2005-2261 CVE-2005-2262 CVE-2005-2263 CVE-2005-2264 CVE-2005-2265 CVE-2005-2266 CVE-2005-2267 CVE-2005-2268 CVE-2005-2269 CVE-2005-2270 }
[etch] - mozilla-firefox 1.0.4-2sarge3 (medium)
[August 31st, 2005] DTSA-9-1 bluez-utils - bad device name escaping
{CVE-2005-2547 }
[etch] - bluez-utils 2.19-0.1etch1 (high)
[August 29th, 2005] DTSA-10-1 pcre3 - buffer overflow
{CVE-2005-2491 }
[etch] - pcre3 6.3-0.1etch1 (high)
[August 29th, 2005] DTSA-11-1 maildrop - local privilege escalation
{CVE-2005-2655 }
[etch] - maildrop 1.5.3-1.1etch1 (medium)
[September 8th, 2005] DTSA-12-1 vim - modeline exploits
{CVE-2005-2368 }
[etch] - vim 1:6.3-085+0.0etch1 (medium)
[September 8th, 2005] DTSA-13-1 evolution - format string vulnerabilities
{CVE-2005-2549 CVE-2005-2550 }
[etch] - evolution 2.2.3-2etch1 (high)
[September 13th, 2005] DTSA-14-1 mozilla - several
{CVE-2004-0718 CVE-2005-1937 CVE-2005-2260 CVE-2005-2261 CVE-2005-2263 CVE-2005-2265 CVE-2005-2266 CVE-2005-2268 CVE-2005-2269 CVE-2005-2270 }
[etch] - mozilla 2:1.7.8-1sarge2
[September 13th, 2005] DTSA-15-1 php4 - several vulnerabilities
{CVE-2005-1751 CVE-2005-1921 CVE-2005-2498 }
[etch] - php4 4:4.3.10-16etch1
[September 15th, 2005] DTSA-16-1 linux-2.6 - various
{CVE-2005-2098 CVE-2005-2099 CVE-2005-2456 CVE-2005-2617 CVE-2005-1913 CVE-2005-1761 CVE-2005-2457 CVE-2005-2458 CVE-2005-2459 CVE-2005-2548 CVE-2004-2302 CVE-2005-1765 CVE-2005-1762 CVE-2005-2555 }
NOTE: Just a pointer to a regular update in testing.
[September 15th, 2005] DTSA-17-1 lm-sensors - insecure temporary file
{CVE-2005-2672 }
[etch] - lm-sensors 1:2.9.1-6etch1
[September 22nd, 2005] DTSA-19-1 clamav - buffer overflow and infinate loop problems
{CVE-2005-2919 CVE-2005-2920 }
[etch] - clamav 0.86.2-4etch2
[October 13th, 2005] DTSA-20-1 mailutils - Format string vulnerability
{CVE-2005-2878 }
[etch] - mailutils 1:0.6.90-2.1etch1
[November 3rd, 2005] DTSA-21-1 clamav - Denial of service vulnerabilities and buffer overflow
{CVE-2005-3239 CVE-2005-3500 CVE-2005-3501 CVE-2005-3303 }
[etch] - clamav 0.87.1-0etch.1
[December 5th, 2005] DTSA-22-1 uim - local privilege escalation
{CVE-2005-3149 }
[etch] - uim 1:0.4.7-2.0etch1
[December 5th, 2005] DTSA-23-1 centericq - buffer overflow
{CVE-2005-3863 }
[etch] - centericq 4.21.0-6.0etch1
[December 5th, 2005] DTSA-24-1 inkscape - buffer overflow
{CVE-2005-3737 }
[etch] - inkscape 0.43-0.0etch1
[December 5th, 2005] DTSA-25-1 smb4k - access validation error
{CVE-2005-2851 }
[etch] - smb4k 0.6.4-0.0etch1
[December 5th, 2005] DTSA-26-1 trackballs - symlink attack
[etch] - trackballs 1.1.1-0.0etch1
[January 20th, 2006] DTSA-27-1 fuse - potential data corruption when installed seduid root
{CVE-2005-3531 }
[etch] - fuse 2.3.0-4.2etch1
[January 25th, 2005] DTSA-28-1 gpdf - multiple vulnerabilities
{CVE-2005-2097 CVE-2005-3193 CVE-2005-3624 CVE-2005-3625 CVE-2005-3626 CVE-2005-3627 CVE-2005-3628 }
[etch] - gpdf 2.10.0-1+etch1
[June 15th, 2006] DTSA-29-1 blender - heap-based buffer overflow
{CVE-2005-4470 }
[etch] - blender 2.37a-1.1etch1
[September 27th, 2006] DTSA-31-1 hyperestraier - cross-site request forgery (CSRF) vulnerability
{CVE-2006-3671 }
[etch] - hyperestraier 1.0.6-1.1etch1
[February 1st, 2007] DTSA-32-1 bcfg2 - programming error
[etch] - bcfg2 0.8.6.1-1.1etch1
[February 12th, 2007] DTSA-33-1 wordpress - multiple vulnerabilities
{CVE-2007-0262 CVE-2007-0539 CVE-2007-0541 }
[etch] - wordpress 2.0.8-1
[March 3rd, 2007] DTSA-34-1 wordpress - cross-site scripting
{CVE-2007-1049 }
[etch] - wordpress 2.0.9-1
[May 22th, 2007] DTSA-35-1 aircrack-ng - programming error
{CVE-2007-2057 }
[lenny] - aircrack-ng 1:0.8-0.1lenny1
[May 22th, 2007] DTSA-36-1 mydns - multiple buffer overflows
{CVE-2007-2362 }
[lenny] - mydns 1:1.1.0-7.1lenny1
[May 22th, 2007] DTSA-37-1 clamav - several vulnerabilities
{CVE-2007-1745 CVE-2007-1997 CVE-2007-2029 }
[lenny] - clamav 0.90.1-3lenny2
[May 26th, 2007] DTSA-38-1 qemu - several vulnerabilities
{CVE-2007-1320 CVE-2007-1321 CVE-2007-1322 CVE-2007-1323 CVE-2007-1366 }
[lenny] - qemu 0.8.2-5lenny1
[May 28th, 2007] DTSA-39-1 php5 - several vulnerabilities
{CVE-2007-1286 CVE-2007-1375 CVE-2007-1376 CVE-2007-1380 CVE-2007-1453 CVE-2007-1454 CVE-2007-1521 CVE-2007-1583 CVE-2007-1700 CVE-2007-1718 CVE-2007-1777 CVE-2007-1824 CVE-2007-1887 CVE-2007-1889 CVE-2007-1900 CVE-2007-2509 CVE-2007-2510 CVE-2007-2511 }
[lenny] - php5 5.2.0-10+lenny1
[May 28th, 2007] DTSA-40-1 php4 - several vulnerabilities
{CVE-2007-1286 CVE-2007-1380 CVE-2007-1521 CVE-2007-1583 CVE-2007-1718 CVE-2007-1777 CVE-2007-2509 }
[lenny] - php4 6:4.4.4-9+lenny1
[May 31th, 2007] DTSA-41-1 samba - several vulnerabilities
{CVE-2007-2444 CVE-2007-2446 CVE-2007-2447 }
[lenny] - samba 3.0.24-6+lenny3
[July 13th, 2007] DTSA-42-1 ipsec-tools - missing input sanitising
{CVE-2007-1841}
[lenny] - ipsec-tools 1:0.6.6-3.1lenny1
[July 24th, 2007] DTSA-43-1 clamav - several vulnerabilities
{CVE-2007-3725 CVE-2007-2650 CVE-2007-3023 CVE-2007-3024 CVE-2007-3122 CVE-2007-3123}
[lenny] - clamav 0.90.1-3.1lenny3
[July 31st, 2007] DTSA-44-1 pulseaudio - remote DoS
{CVE-2007-1804}
[lenny] - pulseaudio 0.9.5-7lenny2
[July 31st, 2007] DTSA-45-1 iceweasel - several vulnerabilities
{CVE-2007-1116 CVE-2007-1362 CVE-2007-2867 CVE-2007-2868 CVE-2007-2869 CVE-2007-2870 CVE-2007-2871 CVE-2007-3089 CVE-2007-3656 CVE-2007-3734 CVE-2007-3735 CVE-2007-3736 CVE-2007-3737 CVE-2007-3738}
[lenny] - iceweasel 2.0.0.5-0etch1+lenny1
[August 1st, 2007] DTSA-46-1 icedove - several vulnerabilities
{CVE-2007-1558 CVE-2007-2867 CVE-2007-2868}
[lenny] - icedove 1.5.0.12.dfsg1-0etch1+lenny1
[August 1st, 2007] DTSA-47-1 iceape - several vulnerabilities
{CVE-2007-1116 CVE-2007-1362 CVE-2007-1558 CVE-2007-2867 CVE-2007-2868 CVE-2007-2870 CVE-2007-2871 CVE-2007-3089 CVE-2007-3656 CVE-2007-3734 CVE-2007-3735 CVE-2007-3736 CVE-2007-3737 CVE-2007-3738}
[lenny] - iceape 1.0.10~pre070720-0etch1+lenny1
[August 3rd, 2007] DTSA-48-1 gnash - arbitrary code execution
{CVE-2007-2500}
[lenny] - gnash 0.7.2-1lenny1
[August 7th, 2007] DTSA-49-1 kdegraphics - arbitrary code execution
{CVE-2007-3387}
[lenny] - kdegraphics 3.5.7-2lenny1
[August 7th, 2007] DTSA-50-1 koffice - arbitrary code execution
{CVE-2007-3387}
[lenny] - koffice 1.6.3-1lenny1
[August 12th, 2007] DTSA-51-1 xulrunner - several vulnerabilities
{CVE-2007-1116 CVE-2007-1362 CVE-2007-2867 CVE-2007-2868 CVE-2007-2869 CVE-2007-2870 CVE-2007-2871 CVE-2007-3089 CVE-2007-3656 CVE-2007-3734 CVE-2007-3735 CVE-2007-3736 CVE-2007-3737 CVE-2007-3738 CVE-2007-3844 CVE-2007-3845 CVE-2007-4041}
[lenny] - xulrunner 1.8.0.13~pre070720-0etch3+lenny1
[August 16th, 2007] DTSA-52-1 iceape - several vulnerabilities
{CVE-2007-3844 CVE-2007-3845 CVE-2007-4041}
[lenny] - iceape 1.0.10~pre070720-0etch3+lenny1
[August 16th, 2007] DTSA-53-1 iceweasel - several vulnerabilities
{CVE-2007-3844 CVE-2007-3845 CVE-2007-4041}
[lenny] - iceweasel 2.0.0.6-0etch1+lenny1
[August 21th, 2007] DTSA-54-1 poppler - arbitrary code execution
{CVE-2007-3387}
[lenny] - poppler 0.5.4-6lenny1
[August 31st, 2007] DTSA-55-1 centerim - arbitrary code execution
{CVE-2007-3713}
[lenny] - centerim 4.22.1-2lenny1
[September 4th, 2007] DTSA-56-1 zziplib - arbitrary code execution
{CVE-2007-1614}
[lenny] - zziplib 0.12.83-8lenny1
[September 9th, 2007] DTSA-57-1 gforge - sql injection
{CVE-2007-3913}
[lenny] - gforge 4.5.14-23lenny2
|
