Release courier-authlib DTSA fixing a SQL injection

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@10731 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: Steffen Joeris <white@debian.org> 2008-12-19 07:29:08 +0000
committer: Steffen Joeris <white@debian.org> 2008-12-19 07:29:08 +0000
commit: 0abcacb08819888e47e964f8f2f0e385432a4caf (patch)
tree: f85a0dbaf30e56f1ca99129b8206e9878131eee2 /data
parent: ea27d827ad55b00036cf0b4308b9c16bf914bc27 (diff)
2 files changed, 5 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index e35a8f96a0..7705ff2cfa 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7709,8 +7709,9 @@ CVE-2008-2382
 CVE-2008-2381 [gforge sql injection in GroupJoinRequest.class.php]
 	RESERVED
 	- gforge 4.7~rc2-7
-CVE-2008-2380
+CVE-2008-2380 [SQL injection vulnerability with PGSQL]
 	RESERVED
+	- courier-authlib <unfixed>
 CVE-2008-2379 (Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 ...)
 	{DSA-1682-1}
 	- squirrelmail 2:1.4.15-4
diff --git a/data/DTSA/list b/data/DTSA/list
index 1a76f40dc4..42f1921092 100644
--- a/data/DTSA/list
+++ b/data/DTSA/list
@@ -532,3 +532,6 @@
 [November 29th, 2008] DTSA-179-1 geshi - multiple issues
 	{CVE-2008-5185 CVE-2008-5186}
 	[lenny] - geshi 1.0.7.22-1+lenny1
+[December 19th, 2008] DTSA-180-1 courier-authlib SQL injection
+	{CVE-2008-2380}
+	[lenny] - courier-authlib 0.61.0-1+lenny1
author	Steffen Joeris <white@debian.org>	2008-12-19 07:29:08 +0000
committer	Steffen Joeris <white@debian.org>	2008-12-19 07:29:08 +0000
commit	0abcacb08819888e47e964f8f2f0e385432a4caf (patch)
tree	f85a0dbaf30e56f1ca99129b8206e9878131eee2 /data
parent	ea27d827ad55b00036cf0b4308b9c16bf914bc27 (diff)