[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Preparation of Debian GNU/Linux 3.0r2



An up-to-date version is at <http://master.debian.org/~joey/3.0r2/>.

I am preparing the second revision of the current stable Debian
distribution (woody) and will infrequently send reports so people can
actually comment on it and intervene whenever this is required.

If you disagree with one bit or another, please reply to this mail and
explain why these things should be handled differently.  There is
still time to reconsider.

The plan is to release this revision at some time in the future.  An
ftpmaster still has to give the final approval for each package since
they are responsible for the archive.  However, I will try to make
their work as easy as possible in the hope to get the next revision
out properly.

The regulations for stable are quite conservative.  The requirements
for packages to get into stable are:

 1. The package fixes a security problem.  An advisory by our own
    Security Team is required.  Updates need to be approved by the
    security team.

 2. The package fixes a critical bug which can lead into data loss,
    data corruption, or an overly broken system, or the package is
    broken or not usable (anymore).

 3. The stable version of the package is not installable at all due to
    broken or unmet dependencies or broken installation scripts.

 4. All released architectures have to be in sync.

 5. If it is a kernel package, I can detect a similar amount of
    packages to remove, preferably older versions of the new packages.

It is ((1 OR 2 OR 3) AND 4) OR 5

Since this is the first revision of stable, I may be a little bit lax
about enforcing reason 2.

Regular bugs and upgrade problems don't get fixed in new revisions for
the stable distribution.  They should instead be documented in the
Release Notes which are maintained by Rob Bradford
<mailto:robster@debian.org> and are found at
<http://www.debian.org/releases/woody/releasenotes>.

Packages, which will most probably be rejected:

  . Packages that fix non-critical bugs.

  . Misplaced uploads, i.e. packages that were uploaded to 'stable
    unstable' or `frozen unstable' or similar.

  . Packages for which its binary packages are out of sync with regard
    to all supported architectures in the stable distribution.

  . Binary packages for which the source got lost somehow.

Accepted Packages
-----------------

These packages will be installed into the stable Debian distribution
and will be part of the next revision.

acm         stable    5.0-3          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
acm         updates   5.0-3.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 333 - integer overflow

apcupsd     stable    3.8.5-1.1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
apcupsd     updates   3.8.5-1.1.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 277 - buffer overflows, format string

aspell-en      stable    0.33.7.1-8  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
aspell         stable    0.33.7.1-8  alpha arm hppa i386 ia64 m68k powerpc s390 sparc source
libaspell-dev  stable    0.33.7.1-8  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
libaspell10    stable    0.33.7.1-8  alpha arm hppa i386 ia64 m68k powerpc s390 sparc

	The license incorrectly says that it's LGPL but it is in fact
	a unique license which is non-DFSG-free.

atftpd      stable    0.6          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
atftpd      updates   0.6.0woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
atftp       stable    0.6          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
atftp       updates   0.6.0woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 314 - buffer overflow

autorespond  stable    2.0.2-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
autorespond  updates   2.0.2-2woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 373 - buffer overflow

balsa       stable    1.2.4-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
balsa       updates   1.2.4-2.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 300 - buffer overflow

bind-dev    stable    1:8.3.3-0.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bind-dev    updates   1:8.3.3-2.0woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bind-doc    stable    1:8.3.3-0.woody.1  all
bind-doc    updates   1:8.3.3-2.0woody1  all
bind        stable    1:8.3.3-0.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
bind        updates   1:8.3.3-2.0woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 196 - several vulnerabilities

bugzilla-doc  stable    2.14.2-0woody2  all
bugzilla-doc  updates   2.14.2-0woody4  all
bugzilla      stable    2.14.2-0woody2  all source
bugzilla      updates   2.14.2-0woody4  all source

	DSA 230 - insecure permissions, spurious backup files

canna-utils     stable    3.5b2-46    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
canna-utils     updates   3.5b2-46.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
canna           stable    3.5b2-46    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
canna           updates   3.5b2-46.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
libcanna1g-dev  stable    3.5b2-46    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libcanna1g-dev  updates   3.5b2-46.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libcanna1g      stable    3.5b2-46    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libcanna1g      updates   3.5b2-46.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 224 - buffer overflow and more

colrconv    stable    0.99.2-8    alpha i386 source
colrconv    updates   0.99.2-8    arm hppa ia64 m68k mips mipsel powerpc s390 sparc

	Bring architectures back in sync

cupsys-bsd         stable    1.1.14-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cupsys-bsd         updates   1.1.14-5    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cupsys-client      stable    1.1.14-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cupsys-client      updates   1.1.14-5    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cupsys-pstoraster  stable    1.1.14-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cupsys-pstoraster  updates   1.1.14-5    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cupsys             stable    1.1.14-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
cupsys             updates   1.1.14-5    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
libcupsys2-dev     stable    1.1.14-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libcupsys2-dev     updates   1.1.14-5    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libcupsys2         stable    1.1.14-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libcupsys2         updates   1.1.14-5    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 317 - denial of service

cvs         stable    1.11.1p1debian-8    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
cvs         updates   1.11.1p1debian-8.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 233 - doubly freed memory

cyrus-admin   stable    1.5.19-9    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-admin   updates   1.5.19-9.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-common  stable    1.5.19-9    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-common  updates   1.5.19-9.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-dev     stable    1.5.19-9    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-dev     updates   1.5.19-9.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-imapd   stable    1.5.19-9    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
cyrus-imapd   updates   1.5.19-9.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
cyrus-nntp    stable    1.5.19-9    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-nntp    updates   1.5.19-9.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-pop3d   stable    1.5.19-9    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
cyrus-pop3d   updates   1.5.19-9.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 215 - buffer overflow

cyrus-sasl2               stable    2.1.2-2     source
libsasl2-dev              stable    2.1.2-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsasl2-digestmd5-plain  stable    2.1.2-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsasl2-modules-plain    stable    2.1.2-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsasl2                  stable    2.1.2-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
sasl2-bin                 stable    2.1.2-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	The library has some minor security problems and according to
	the maintainer some other problems as well, i.e. it could not
	work with software in testing/unstable which requires it
	either.  All of the SASL-using software in stable uses
	cyrus-sasl, not cyrus-sasl2.

ddskk       stable    11.6.rel.0-2        all source
ddskk       updates   11.6.rel.0-2woody1  all source

	DSA 343 - insecure temporary file

debianutils  stable    1.16          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
debianutils  updates   1.16.2woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Backport for woody.  closes: #172200.

	* Backport of Ian Zimmerman's run-parts program output loss
	  patch, which fixes zombie problem.  closes: #184710.

	There is a race condition with the receiving of SIGCHLD before
	select is called.

	1.16.1woody0 consumed infinite CPU power.  It should be fixed
	in 1.16.2woody0 which happens to be just another version from
	sid recompiled.  That's a reason to delay it alone, this
	requires testing!

dhcp3-client  stable    3.0+3.0.1rc9-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-client  updates   3.0+3.0.1rc9-2.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-common  stable    3.0+3.0.1rc9-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-common  updates   3.0+3.0.1rc9-2.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-dev     stable    3.0+3.0.1rc9-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-dev     updates   3.0+3.0.1rc9-2.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-relay   stable    3.0+3.0.1rc9-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-relay   updates   3.0+3.0.1rc9-2.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-server  stable    3.0+3.0.1rc9-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3-server  updates   3.0+3.0.1rc9-2.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dhcp3         stable    3.0+3.0.1rc9-2    source
dhcp3         updates   3.0+3.0.1rc9-2.2  source

	DSA 245 - ignored counter boundary

	DSA 231 - stack overflows

dietlibc-dev  stable    0.12-2.4    alpha arm i386 mips mipsel powerpc sparc
dietlibc-dev  updates   0.12-2.5    alpha arm i386 mips mipsel powerpc sparc
dietlibc-doc  stable    0.12-2.4    all
dietlibc-doc  updates   0.12-2.5    all
dietlibc      stable    0.12-2.4    source
dietlibc      updates   0.12-2.5    source

	DSA 272 - integer overflow

dwww        stable    1.7.6.woody.1  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
dwww        updates   1.7.6.woody.1  arm
realpath    stable    1.7.6.woody.1  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
realpath    updates   1.7.6.woody.1  arm

	Get architectures in sync

ecartis-cgi  stable    0.129a+1.0.0-snap20020514-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ecartis-cgi  updates   0.129a+1.0.0-snap20020514-1.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ecartis      stable    0.129a+1.0.0-snap20020514-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
ecartis      updates   0.129a+1.0.0-snap20020514-1.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 271 - unauthorized password change

eldav       stable    0.0.20020411-1        all source
eldav       updates   0.0.20020411-1woody1  all source

	DSA 325 - insecure temporary file

epic        stable    3.004-17    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
epic        updates   3.004-17.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 287 - buffer overflows

epic4       stable    1:1.1.2.20020219-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
epic4       updates   1:1.1.2.20020219-2.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 298 - buffer overflows

eroaster    stable    2.1.0.0.3-2        all source
eroaster    updates   2.1.0.0.3-2woody1  all source

	DSA 366 - insecure temporary file

eterm       stable    0.9.2-0pre2002042903    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
eterm       updates   0.9.2-0pre2002042903.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 309 - buffer overflow

ethereal-common  stable    0.9.4-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ethereal-common  updates   0.9.4-1woody5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ethereal-dev     stable    0.9.4-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ethereal-dev     updates   0.9.4-1woody5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ethereal         stable    0.9.4-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
ethereal         updates   0.9.4-1woody5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
tethereal        stable    0.9.4-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
tethereal        updates   0.9.4-1woody5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 258	- format string vulnerability

	DSA 313	- buffer overflows, integer overflows

	DSA 324	- several vulnerabilities

eximon      stable    3.35-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
eximon      updates   3.35-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
exim        stable    3.35-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
exim        updates   3.35-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 376 - buffer overflow

exim-tls    stable    3.35-3        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
exim-tls    updates   3.35-3woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 376 - buffer overflow

falconseye-data  stable    1.9.3-7        all
falconseye-data  updates   1.9.3-7woody3  all
falconseye       stable    1.9.3-7        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
falconseye       updates   1.9.3-7woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 350 - buffer overflow

fdclone     stable    2.00a-1        alpha arm hppa i386 m68k powerpc s390 sparc source
fdclone     updates   2.00a-1woody3  alpha arm hppa i386 m68k powerpc s390 sparc source

	DSA352 - insecure temporary directory

fetchmail-common  stable    5.9.11-6.1  all
fetchmail-common  updates   5.9.11-6.2  all
fetchmailconf     stable    5.9.11-6.1  all
fetchmailconf     updates   5.9.11-6.2  all
fetchmail         stable    5.9.11-6.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
fetchmail         updates   5.9.11-6.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 216 - buffer overflow

fetchmail-ssl  stable    5.9.11-6.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
fetchmail-ssl  updates   5.9.11-6.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 216 - buffer overflow

file        stable    3.37-3.1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
file        updates   3.37-3.1.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA-260 file - buffer overflow

ftape-tools  stable    1:1.09.2001.08.13-0.3  source
ftape-util   stable    1:1.09.2001.08.13-0.3  arm i386
ftape-util   updates   1:1.09.2001.08.13-0.3  alpha

	Get architectures more in sync

fuzz        stable    0.6-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
fuzz        updates   0.6-6woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 302 - privilege escalation

gallery     stable    1.2.5-7.woody.0  all source
gallery     updates   1.2.5-8woody1    all source

	DSA 355 - cross-site scripting

glibc-doc          stable    2.2.5-11.2  all
glibc-doc          updates   2.2.5-11.5  all
glibc              stable    2.2.5-11.2  source
glibc              updates   2.2.5-11.5  source
libc6-dbg          stable    2.2.5-11.2  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6-dbg          updates   2.2.5-11.5  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6-dev-sparc64  stable    2.2.5-11.2  sparc
libc6-dev-sparc64  updates   2.2.5-11.5  sparc
libc6-dev          stable    2.2.5-11.2  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6-dev          updates   2.2.5-11.5  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6-pic          stable    2.2.5-11.2  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6-pic          updates   2.2.5-11.5  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6-prof         stable    2.2.5-11.2  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6-prof         updates   2.2.5-11.5  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6-sparc64      stable    2.2.5-11.2  sparc
libc6-sparc64      updates   2.2.5-11.5  sparc
libc6.1-dbg        stable    2.2.5-11.2  alpha ia64
libc6.1-dbg        updates   2.2.5-11.5  alpha ia64
libc6.1-dev        stable    2.2.5-11.2  alpha ia64
libc6.1-dev        updates   2.2.5-11.5  alpha ia64
libc6.1-pic        stable    2.2.5-11.2  alpha ia64
libc6.1-pic        updates   2.2.5-11.5  alpha ia64
libc6.1-prof       stable    2.2.5-11.2  alpha ia64
libc6.1-prof       updates   2.2.5-11.5  alpha ia64
libc6.1            stable    2.2.5-11.2  alpha ia64
libc6.1            updates   2.2.5-11.5  alpha ia64
libc6              stable    2.2.5-11.2  arm hppa i386 m68k mips mipsel powerpc s390 sparc
libc6              updates   2.2.5-11.5  arm hppa i386 m68k mips mipsel powerpc s390 sparc
locales            stable    2.2.5-11.2  all
locales            updates   2.2.5-11.5  all
nscd               stable    2.2.5-11.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
nscd               updates   2.2.5-11.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 282 - integer overflow

gnocatan-client  stable    0.6.1-5        alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
gnocatan-client  stable    0.6.1-5.0.1    hppa
gnocatan-client  updates   0.6.1-5woody2  alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
gnocatan-data    stable    0.6.1-5        all
gnocatan-data    updates   0.6.1-5woody2  all
gnocatan-help    stable    0.6.1-5        all
gnocatan-help    updates   0.6.1-5woody2  all
gnocatan-server  stable    0.6.1-5        alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
gnocatan-server  stable    0.6.1-5.0.1    hppa
gnocatan-server  updates   0.6.1-5woody2  alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
gnocatan         stable    0.6.1-5        source
gnocatan         updates   0.6.1-5woody2  source

	DSA 315 - buffer overflows, denial of service

gs-common   stable    0.3.3          all source
gs-common   updates   0.3.3.0woody1  all source

	DSA 286 - insecure temporary file

gzip        stable    1.3.2-3        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
gzip        updates   1.3.2-3woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 308 - insecure temporary files

hypermail   stable    2.1.3-1     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
hypermail   updates   2.1.3-2.0   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 248 - buffer overflows

illuminator-demo  stable    0.3.2-1.woody.2  alpha i386 mips mipsel powerpc s390 sparc
illuminator-demo  updates   0.3.2-1.woody.2  ia64
illuminator-dev   stable    0.3.2-1.woody.2  alpha i386 mips mipsel powerpc s390 sparc
illuminator-dev   updates   0.3.2-1.woody.2  ia64
illuminator-doc   stable    0.3.2-1.woody.2  all
illuminator0      stable    0.3.2-1.woody.2  alpha i386 mips mipsel powerpc s390 sparc
illuminator0      updates   0.3.2-1.woody.2  ia64
illuminator       stable    0.3.2-1.woody.2  source

	Sync architectures

imagemagick       stable    4:5.4.4.5-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
imagemagick       updates   4:5.4.4.5-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
libmagick++5-dev  stable    4:5.4.4.5-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmagick++5-dev  updates   4:5.4.4.5-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmagick++5      stable    4:5.4.4.5-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmagick++5      updates   4:5.4.4.5-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmagick5-dev    stable    4:5.4.4.5-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmagick5-dev    updates   4:5.4.4.5-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmagick5        stable    4:5.4.4.5-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmagick5        updates   4:5.4.4.5-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perlmagick        stable    4:5.4.4.5-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perlmagick        updates   4:5.4.4.5-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 331 - insecure temporary file

imp         stable    3:2.2.6-5    all source
imp         updates   3:2.2.6-5.2  all source

	DSA 229 - SQL injection

bitchx-dev  stable    1:1.0-0c19-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bitchx-dev  updates   1:1.0-0c19-1.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bitchx-gtk  stable    1:1.0-0c19-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bitchx-gtk  updates   1:1.0-0c19-1.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bitchx-ssl  stable    1:1.0-0c19-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bitchx-ssl  updates   1:1.0-0c19-1.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bitchx      stable    1:1.0-0c19-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bitchx      updates   1:1.0-0c19-1.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ircii-pana  stable    1:1.0-0c19-1    source
ircii-pana  updates   1:1.0-0c19-1.1  source

	DSA 306 - buffer overflows, integer overflow

jigdo-file  stable    0.6.5-1     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
jigdo-file  updates   0.6.5-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
jigdo       stable    0.6.5-1     source
jigdo       updates   0.6.5-2     source

	Backported some changes from 0.6.8 to stable so the tool works
	well with current cdimage archives (or rather .template
	files).  It also fixes a bug with wrong files downloaded when
	the filename is the same but the path isn't.

jnethack    stable    1.1.5-11        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
jnethack    updates   1.1.5-11woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	Security update: buffer overflow

kate               stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kate               updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdebase-audiolibs  stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdebase-audiolibs  updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdebase-dev        stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdebase-dev        updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdebase-doc        stable    4:2.2.2-14    all
kdebase-doc        updates   4:2.2.2-14.4  all
kdebase-libs       stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdebase-libs       updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdebase            stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
kdebase            updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
kdewallpapers      stable    4:2.2.2-14    all
kdewallpapers      updates   4:2.2.2-14.4  all
kdm                stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdm                updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
konqueror          stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
konqueror          updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
konsole            stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
konsole            updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kscreensaver       stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kscreensaver       updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkonq-dev        stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkonq-dev        updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkonq3           stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkonq3           updates   4:2.2.2-14.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 296 - insecure execution

kamera        stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kamera        updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kcoloredit    stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kcoloredit    updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdegraphics   stable    4:2.2.2-6.8   source
kdegraphics   updates   4:2.2.2-6.11  source
kfract        stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kfract        updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kghostview    stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kghostview    updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kiconedit     stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kiconedit     updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kooka         stable    4:2.2.2-6.8   alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
kooka         updates   4:2.2.2-6.11  alpha i386 ia64 m68k mips mipsel powerpc s390 sparc
kpaint        stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kpaint        updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kruler        stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kruler        updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ksnapshot     stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ksnapshot     updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kview         stable    4:2.2.2-6.8   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kview         updates   4:2.2.2-6.11  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkscan-dev  stable    4:2.2.2-6.8   alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
libkscan-dev  updates   4:2.2.2-6.11  alpha i386 ia64 m68k mips mipsel powerpc s390 sparc
libkscan1     stable    4:2.2.2-6.8   alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
libkscan1     updates   4:2.2.2-6.11  alpha i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 284 - insecure execution

kdelibs-dev    stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdelibs-dev    updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdelibs3-bin   stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdelibs3-bin   updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdelibs3-cups  stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdelibs3-cups  updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdelibs3-doc   stable    4:2.2.2-13.woody.5  all
kdelibs3-doc   updates   4:2.2.2-13.woody.8  all
kdelibs3       stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdelibs3       updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdelibs        stable    4:2.2.2-13.woody.5  source
kdelibs        updates   4:2.2.2-13.woody.8  source
libarts-alsa   stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libarts-alsa   updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libarts-dev    stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libarts-dev    updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libarts        stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libarts        updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkmid-alsa   stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkmid-alsa   updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkmid-dev    stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkmid-dev    updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkmid        stable    4:2.2.2-13.woody.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkmid        updates   4:2.2.2-13.woody.8  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 293 - insecure execution

	DSA 361 - several vulnerabilities

kdenetwork      stable    4:2.2.2-14    source
kdenetwork      updates   4:2.2.2-14.6  source
kdict           stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdict           updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
kit             stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kit             updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
klisa           stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
klisa           updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
kmail           stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kmail           updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
knewsticker     stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
knewsticker     updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
knode           stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
knode           updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
korn            stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
korn            updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
kppp            stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kppp            updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
ksirc           stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ksirc           updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
ktalkd          stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ktalkd          updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
libkdenetwork1  stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkdenetwork1  updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
libmimelib-dev  stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmimelib-dev  updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc
libmimelib1     stable    4:2.2.2-14    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmimelib1     updates   4:2.2.2-14.6  alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc

	DSA 237 - several vulnerabilities

kapptemplate    stable    2.2.2-3     all
kapptemplate    updates   2.2.2-3.2   all
kbabel-dev      stable    2.2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kbabel-dev      updates   2.2.2-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kbabel          stable    2.2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kbabel          updates   2.2.2-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kdepalettes     stable    2.2.2-3     all
kdepalettes     updates   2.2.2-3.2   all
kdesdk-doc      stable    2.2.2-3     all
kdesdk-doc      updates   2.2.2-3.2   all
kdesdk-scripts  stable    2.2.2-3     all
kdesdk-scripts  updates   2.2.2-3.2   all
kdesdk          stable    2.2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
kdesdk          updates   2.2.2-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
kexample        stable    2.2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kexample        updates   2.2.2-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kmtrace         stable    2.2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kmtrace         updates   2.2.2-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kspy            stable    2.2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kspy            updates   2.2.2-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kstartperf      stable    2.2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
kstartperf      updates   2.2.2-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
poxml           stable    2.2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
poxml           updates   2.2.2-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 239 - several vulnerabilities

kernel-headers-2.2.20-compact  stable    2.2.20-5        i386
kernel-headers-2.2.20-compact  updates   2.2.20-5woody3  i386
kernel-headers-2.2.20-idepci   stable    2.2.20-5        i386
kernel-headers-2.2.20-idepci   updates   2.2.20-5woody3  i386
kernel-headers-2.2.20          stable    2.2.20-5        i386
kernel-headers-2.2.20          updates   2.2.20-5woody3  i386
kernel-image-2.2.20-compact    stable    2.2.20-5        i386
kernel-image-2.2.20-compact    updates   2.2.20-5woody3  i386
kernel-image-2.2.20-i386       stable    2.2.20-5        source
kernel-image-2.2.20-i386       updates   2.2.20-5woody3  source
kernel-image-2.2.20-idepci     stable    2.2.20-5        i386
kernel-image-2.2.20-idepci     updates   2.2.20-5woody3  i386
kernel-image-2.2.20            stable    2.2.20-5        i386
kernel-image-2.2.20            updates   2.2.20-5woody3  i386

	DSA 336 - several vulnerabilities

kernel-headers-2.4.17     stable    2.4.17-2.woody.1.1        s390
kernel-headers-2.4.17     updates   2.4.17-2.woody.2.2        s390
kernel-image-2.4.17-s390  stable    2.4.17-2.woody.1.1        s390 source
kernel-image-2.4.17-s390  updates   2.4.17-2.woody.2.2        s390 source

	DSA 276 - local privilege escalation

kernel-headers-2.4.18-bf2.4  stable    2.4.18-5        i386
kernel-headers-2.4.18-bf2.4  updates   2.4.18-5woody4  i386
kernel-image-2.4.18-bf2.4    stable    2.4.18-5        i386
kernel-image-2.4.18-bf2.4    updates   2.4.18-5woody4  i386
kernel-image-2.4.18-i386bf   stable    2.4.18-5        source
kernel-image-2.4.18-i386bf   updates   2.4.18-5woody4  source

	DSA 311 - several vulnerabilities

kernel-headers-2.4.17         stable    2.4.17-0.020226.2         mips mipsel
kernel-headers-2.4.17         updates   2.4.17-0.020226.2.woody2  mips mipsel
kernel-image-2.4.17-r3k-kn02  stable    2.4.17-0.020226.2         mipsel
kernel-image-2.4.17-r3k-kn02  updates   2.4.17-0.020226.2.woody2  mipsel
kernel-image-2.4.17-r4k-ip22  stable    2.4.17-0.020226.2         mips
kernel-image-2.4.17-r4k-ip22  updates   2.4.17-0.020226.2.woody2  mips
kernel-image-2.4.17-r4k-kn04  stable    2.4.17-0.020226.2         mipsel
kernel-image-2.4.17-r4k-kn04  updates   2.4.17-0.020226.2.woody2  mipsel
kernel-image-2.4.17-r5k-ip22  stable    2.4.17-0.020226.2         mips
kernel-image-2.4.17-r5k-ip22  updates   2.4.17-0.020226.2.woody2  mips
kernel-patch-2.4.17-mips      stable    2.4.17-0.020226.1         all source
kernel-patch-2.4.17-mips      updates   2.4.17-0.020226.2.woody2  all source
mips-tools                    stable    2.4.17-0.020226.2         mipsel
mips-tools                    stable    2.4.19-0.020911.1.woody0  mips
mips-tools                    updates   2.4.17-0.020226.2.woody2  mipsel
mips-tools                    updates   2.4.19-0.020911.1.woody1  mips

	DSA 270 - local privilege escalation

kernel-patch-2.4.17-s390  stable    0.0.20020816-0.woody.1    all source
kernel-patch-2.4.17-s390  updates   0.0.20020816-0.woody.1.1  all source

	DSA 276 - local privilege escalation

kernel-headers-2.4.18            stable    2.4.18-1        powerpc
kernel-headers-2.4.18            updates   2.4.18-1woody1  powerpc
kernel-image-2.4.18-newpmac      stable    2.4.18-1        powerpc
kernel-image-2.4.18-newpmac      updates   2.4.18-1woody1  powerpc
kernel-image-2.4.18-powerpc-smp  stable    2.4.18-1        powerpc
kernel-image-2.4.18-powerpc-smp  updates   2.4.18-1woody1  powerpc
kernel-image-2.4.18-powerpc      stable    2.4.18-1        powerpc
kernel-image-2.4.18-powerpc      updates   2.4.18-1woody1  powerpc
kernel-patch-2.4.18-powerpc      stable    2.4.18-1        all source
kernel-patch-2.4.18-powerpc      updates   2.4.18-1woody1  all source

	DSA 312 - several vulnerabilities

kernel-headers-2.4.19         stable    2.4.19-0.020911.1.woody0  mips
kernel-headers-2.4.19         updates   2.4.19-0.020911.1.woody1  mips
kernel-image-2.4.19-r4k-ip22  stable    2.4.19-0.020911.1.woody0  mips
kernel-image-2.4.19-r4k-ip22  updates   2.4.19-0.020911.1.woody1  mips
kernel-image-2.4.19-r5k-ip22  stable    2.4.19-0.020911.1.woody0  mips
kernel-image-2.4.19-r5k-ip22  updates   2.4.19-0.020911.1.woody1  mips
kernel-patch-2.4.19-mips      stable    2.4.19-0.020911.1.woody0  all source
kernel-patch-2.4.19-mips      updates   2.4.19-0.020911.1.woody1  all source
mips-tools                    stable    2.4.19-0.020911.1.woody0  mips
mips-tools                    updates   2.4.19-0.020911.1.woody1  mips

	DSA 270 - local privilege escalation

kernel-doc-2.4.17     stable    2.4.17-1        all
kernel-doc-2.4.17     updates   2.4.17-1woody1  all
kernel-source-2.4.17  stable    2.4.17-1        all source
kernel-source-2.4.17  updates   2.4.17-1woody1  all source
mkcramfs              stable    2.4.17-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mkcramfs              updates   2.4.17-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 332 - several vulnerabilities

kernel-doc-2.4.18     stable    2.4.18-5    all
kernel-doc-2.4.18     updates   2.4.18-13   all
kernel-source-2.4.18  stable    2.4.18-5    all source
kernel-source-2.4.18  updates   2.4.18-13   all source

	DSA 358 - several vulnerabilities

krb5-admin-server  stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-admin-server  updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-clients       stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-clients       updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-doc           stable    1.2.4-5woody3  all
krb5-doc           updates   1.2.4-5woody4  all
krb5-ftpd          stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-ftpd          updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-kdc           stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-kdc           updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-rsh-server    stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-rsh-server    updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-telnetd       stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-telnetd       updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-user          stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5-user          updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
krb5               stable    1.2.4-5woody3  source
krb5               updates   1.2.4-5woody4  source
libkadm55          stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkadm55          updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkrb5-dev        stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkrb5-dev        updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkrb53           stable    1.2.4-5woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libkrb53           updates   1.2.4-5woody4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 266 - several vulnerabilities

leksbot     stable    1.2-3.1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
leksbot     updates   1.2-3.1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 299 - improper setuid-root execution

liblocale-gettext-perl  stable    1.01-11         alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
liblocale-gettext-perl  updates   1.01-11a.woody  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* The bugs #156381 is also in the stable version of the package. Since
	  it renders basic packages like debconf unusable when it's installed,
	  I'm providing this updated package to fix it.

	* Added the include <libintl.h> in the .xs file this time.

	* Really stupid version number to have a version number lower than
	  1.01-11bis which is in unstable...

	The bug report demonstrates that this problem may render an
	entire installation/upgrade broken.  Hence, an update is
	required.

libpam-smb  stable    1.1.6-1.1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
libpam-smb  updates   1.1.6-1.1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 374 - buffer overflow

libparagui1.0-dev  stable    0.1.0-1     arm hppa i386 m68k mips mipsel powerpc s390
libparagui1.0-dev  updates   0.1.0-1     sparc
libparagui1.0      stable    0.1.0-1     arm hppa i386 m68k mips mipsel powerpc s390 source
libparagui1.0      updates   0.1.0-1     sparc
paragui-themes     stable    0.1.0-1     arm hppa i386 m68k mips mipsel powerpc s390
paragui-themes     updates   0.1.0-1     sparc

	Get architectures more in sync

libpng2-dev  stable    1.0.12-3.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libpng2-dev  updates   1.0.12-3.woody.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libpng2      stable    1.0.12-3.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libpng2      updates   1.0.12-3.woody.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libpng       stable    1.0.12-3.woody.2  source
libpng       updates   1.0.12-3.woody.3  source

	DSA 140 - buffer overflow

libpng-dev  stable    1.2.1-1.1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libpng-dev  updates   1.2.1-1.1.woody.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libpng3     stable    1.2.1-1.1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
libpng3     updates   1.2.1-1.1.woody.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 140 - buffer overflow

libprinterconf-dev  stable    0.4-2          alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
libprinterconf-dev  updates   0.5-4.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libprinterconf0     stable    0.4-2          alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
libprinterconf0     updates   0.5-4.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libprinterconf      stable    0.4-2          source
libprinterconf      updates   0.5-4.woody.2  source
pconf-detect        stable    0.4-2          alpha arm i386 ia64 m68k mips mipsel powerpc s390 sparc
pconf-detect        updates   0.5-4.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	Due to a maintainer bug the package libsnmpkit1 did not only
	contain libsnmpkit2.so.* but also lacked the libsnmpkit2.so
	link.  Hence, it's not exactly usable in woody.  In turn this
	renders packages like pconf-detect, gnulpr and printtool
	useless.

liece-dcc   stable    2.0+0.20020217cvs-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
liece-dcc   updates   2.0+0.20020217cvs-2.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
liece       stable    2.0+0.20020217cvs-2    all source
liece       updates   2.0+0.20020217cvs-2.1  all source

	DSA 341 - insecure temporary file

lprng-doc   stable    3.8.10-1    all
lprng-doc   updates   3.8.10-1.2  all
lprng       stable    3.8.10-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
lprng       updates   3.8.10-1.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 285 - insecure temporary file

lv          stable    4.49.4-7        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
lv          updates   4.49.4-7woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 304 - privilege escalation

lyskom-server  stable    2.0.6-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
lyskom-server  updates   2.0.6-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 318 - denial of service

mah-jong    stable    1.4-1       alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
mah-jong    updates   1.4-2       alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 377 - insecure program execution

man-db      stable    2.3.20-18          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
man-db      updates   2.3.20-18.woody.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 364 - buffer overflows, arbitrary command execution

mhc-utils   stable    0.25+20010625-7    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mhc-utils   updates   0.25+20010625-7.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mhc         stable    0.25+20010625-7    all source
mhc         updates   0.25+20010625-7.1  all source

	DSA 256 - insecure temporary file

mhonarc     stable    2.5.2-1.2   all source
mhonarc     updates   2.5.2-1.3   all source

	DSA 221 - cross site scripting

micq        stable    0.4.9-0woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
micq        updates   0.4.9-0woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	0.4.9-0woody3: DSA 211 - denial of service

	Any version: Serious copyright violation, hence, removing.
	It's been removed from unstable and testing already. See
	Bug#167606 and Bug#194784

mikmod      stable    3.1.6-4        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
mikmod      updates   3.1.6-4woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 320 - buffer overflow

mime-support  stable    3.18-1      all source
mime-support  updates   3.18-1.3    all source

	DSA 292 - insecure temporary file creation

moxftp      stable    2.2-18      source
moxftp      updates   2.2-18.1    source
xftp        stable    2.2-18      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
xftp        updates   2.2-18.1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 281 - buffer overflow

mozart-contrib   stable    1.2.3.20011204-3        i386 m68k powerpc sparc
mozart-contrib   updates   1.2.3.20011204-3woody1  i386 m68k powerpc sparc
mozart-doc-html  stable    1.2.3.20011204-3        all
mozart-doc-html  updates   1.2.3.20011204-3woody1  all
mozart           stable    1.2.3.20011204-3        i386 m68k powerpc sparc source
mozart           updates   1.2.3.20011204-3woody1  i386 m68k powerpc sparc source

	DSA 342 - unsafe mailcap configuration

mutt        stable    1.3.28-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
mutt        updates   1.3.28-2.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
mutt-utf8   stable    1.3.28-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mutt-utf8   updates   1.3.28-2.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 268 - buffer overflow

	DSA 274 - buffer overflow

nano-tiny   stable    1.0.6-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
nano-tiny   updates   1.0.6-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
nano-udeb   updates   1.0.6-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
nano        stable    1.0.6-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
nano        updates   1.0.6-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* nano.c: hardcode a --disable-wrapping-as-root backport to the stable
	  version. If, as root, you want to enable wrapping, use the Meta-W toggle
	  to enable it after starting nano (fixes: #127634 + 5 more).

	This fixes a very annoying misfeature in the boot-floppies
	editor that should be adjusted.

nethack-common  stable    3.4.0-3.0woody1  alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
nethack-common  updates   3.4.0-3.0woody3  alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
nethack-gnome   stable    3.4.0-3.0woody1  alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
nethack-gnome   updates   3.4.0-3.0woody3  alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
nethack-qt      stable    3.4.0-3.0woody1  alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
nethack-qt      updates   3.4.0-3.0woody3  alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
nethack-x11     stable    3.4.0-3.0woody1  alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
nethack-x11     updates   3.4.0-3.0woody3  alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
nethack         stable    3.4.0-3.0woody1  all source
nethack         updates   3.4.0-3.0woody3  all source

	DSA 316 - buffer overflow, incorrect permissions

libnetpbm9-dev  stable    2:9.20-8    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libnetpbm9-dev  updates   2:9.20-8.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libnetpbm9      stable    2:9.20-8    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libnetpbm9      updates   2:9.20-8.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
netpbm-free     stable    2:9.20-8    source
netpbm-free     updates   2:9.20-8.2  source
netpbm          stable    2:9.20-8    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
netpbm          updates   2:9.20-8.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 263 - math overflow errors

netris      stable    0.5-4        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
netris      updates   0.5-4woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 372 - buffer overflow

node        stable    0.3.0a-2        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
node        updates   0.3.0a-2woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 375 - buffer overflow, format string

nowebm      stable    2.9a-7.1    alpha arm i386 m68k mips mipsel powerpc s390 sparc
nowebm      updates   2.9a-7.3    alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
noweb       stable    2.9a-7.1    source
noweb       updates   2.9a-7.3    source

	DSA 323 - insecure temporary files

ldap-gateways  stable    2.0.23-6    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ldap-gateways  updates   2.0.23-6.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ldap-utils     stable    2.0.23-6    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ldap-utils     updates   2.0.23-6.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libldap2-dev   stable    2.0.23-6    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libldap2-dev   updates   2.0.23-6.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libldap2       stable    2.0.23-6    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libldap2       updates   2.0.23-6.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
openldap2      stable    2.0.23-6    source
openldap2      updates   2.0.23-6.3  source
slapd          stable    2.0.23-6    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
slapd          updates   2.0.23-6.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 227 - buffer overflows and other bugs

libssl-dev   stable    0.9.6c-2          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libssl-dev   updates   0.9.6c-2.woody.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libssl0.9.6  stable    0.9.6c-2          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libssl0.9.6  updates   0.9.6c-2.woody.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
openssl      stable    0.9.6c-2          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
openssl      updates   0.9.6c-2.woody.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
ssleay       stable    0.9.6c-2          all
ssleay       updates   0.9.6c-2.woody.3  all

	DSA 253 - information leak
	DSA 288 - several vulnerabilities

orville-write  stable    2.53-4        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
orville-write  updates   2.53-4woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 326 - buffer overflows

libpam-pgsql  stable    0.5.2-3        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libpam-pgsql  updates   0.5.2-3woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
pam-pgsql     stable    0.5.2-3        source
pam-pgsql     updates   0.5.2-3woody1  source

	DSA 370 - format string

pcmcia-cs      stable    3.1.33-6        alpha arm i386 powerpc source
pcmcia-cs      updates   3.1.33-6woody1  alpha arm i386 powerpc source
pcmcia-source  stable    3.1.33-6        all
pcmcia-source  updates   3.1.33-6woody1  all

	* Non-maintainer upload by the Security Team

	* Need pcmcia-cs source in stable-security in order to provide
	  updated pcmcia-modules for kernel update.

	* No changes

	There doesn't seem to be a DSA assigned to this, strange.

pcmcia-modules-2.4.18-bf2.4  stable    3.1.33-6k5              i386
pcmcia-modules-2.4.18-bf2.4  updates   3.1.33-6woody1k5woody3  i386

	DSA 311 - several vulnerabilities

libcgi-fast-perl  stable    5.6.1-7     all
libcgi-fast-perl  updates   5.6.1-8.3   all
libperl-dev       stable    5.6.1-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libperl-dev       updates   5.6.1-8.3   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libperl5.6        stable    5.6.1-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libperl5.6        updates   5.6.1-8.3   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perl-base         stable    5.6.1-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perl-base         updates   5.6.1-8.3   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perl-debug        stable    5.6.1-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perl-debug        updates   5.6.1-8.3   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perl-doc          stable    5.6.1-7     all
perl-doc          updates   5.6.1-8.3   all
perl-modules      stable    5.6.1-7     all
perl-modules      updates   5.6.1-8.3   all
perl-suid         stable    5.6.1-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perl-suid         updates   5.6.1-8.3   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
perl              stable    5.6.1-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
perl              updates   5.6.1-8.3   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 208 - broken safe compartment

	DSA 371 - cross-site scripting

caudium-php4  stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
caudium-php4  updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-cgi      stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-cgi      updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-curl     stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-curl     updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-dev      stable    4:4.1.2-6        all
php4-dev      updates   4:4.1.2-6woody3  all
php4-domxml   stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-domxml   updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-gd       stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-gd       updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-imap     stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-imap     updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-ldap     stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-ldap     updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-mcal     stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-mcal     updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-mhash    stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-mhash    updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-mysql    stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-mysql    updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-odbc     stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-odbc     updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-pear     stable    4:4.1.2-6        all
php4-pear     updates   4:4.1.2-6woody3  all
php4-recode   stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-recode   updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-snmp     stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-snmp     updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-sybase   stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-sybase   updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-xslt     stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4-xslt     updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
php4          stable    4:4.1.2-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
php4          updates   4:4.1.2-6woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 351 - cross-site scripting

phpgroupware-addressbook      stable    0.9.14-0.RC3.2         all
phpgroupware-addressbook      updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-admin            stable    0.9.14-0.RC3.2         all
phpgroupware-admin            updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-api-doc          stable    0.9.14-0.RC3.2         all
phpgroupware-api-doc          updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-api              stable    0.9.14-0.RC3.2         all
phpgroupware-api              updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-bookkeeping      stable    0.9.14-0.RC3.2         all
phpgroupware-bookkeeping      updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-bookmarks        stable    0.9.14-0.RC3.2         all
phpgroupware-bookmarks        updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-brewer           stable    0.9.14-0.RC3.2         all
phpgroupware-brewer           updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-calendar         stable    0.9.14-0.RC3.2         all
phpgroupware-calendar         updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-chat             stable    0.9.14-0.RC3.2         all
phpgroupware-chat             updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-chora            stable    0.9.14-0.RC3.2         all
phpgroupware-chora            updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-comic            stable    0.9.14-0.RC3.2         all
phpgroupware-comic            updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-core-doc         stable    0.9.14-0.RC3.2         all
phpgroupware-core-doc         updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-core             stable    0.9.14-0.RC3.2         all
phpgroupware-core             updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-developer-tools  stable    0.9.14-0.RC3.2         all
phpgroupware-developer-tools  updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-dj               stable    0.9.14-0.RC3.2         all
phpgroupware-dj               updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-eldaptir         stable    0.9.14-0.RC3.2         all
phpgroupware-eldaptir         updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-email            stable    0.9.14-0.RC3.2         all
phpgroupware-email            updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-filemanager      stable    0.9.14-0.RC3.2         all
phpgroupware-filemanager      updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-forum            stable    0.9.14-0.RC3.2         all
phpgroupware-forum            updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-ftp              stable    0.9.14-0.RC3.2         all
phpgroupware-ftp              updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-headlines        stable    0.9.14-0.RC3.2         all
phpgroupware-headlines        updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-hr               stable    0.9.14-0.RC3.2         all
phpgroupware-hr               updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-img              stable    0.9.14-0.RC3.2         all
phpgroupware-img              updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-infolog          stable    0.9.14-0.RC3.2         all
phpgroupware-infolog          updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-inv              stable    0.9.14-0.RC3.2         all
phpgroupware-inv              updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-manual           stable    0.9.14-0.RC3.2         all
phpgroupware-manual           updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-messenger        stable    0.9.14-0.RC3.2         all
phpgroupware-messenger        updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-napster          stable    0.9.14-0.RC3.2         all
phpgroupware-napster          updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-news-admin       stable    0.9.14-0.RC3.2         all
phpgroupware-news-admin       updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-nntp             stable    0.9.14-0.RC3.2         all
phpgroupware-nntp             updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-notes            stable    0.9.14-0.RC3.2         all
phpgroupware-notes            updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-phonelog         stable    0.9.14-0.RC3.2         all
phpgroupware-phonelog         updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-phpsysinfo       stable    0.9.14-0.RC3.2         all
phpgroupware-phpsysinfo       updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-phpwebhosting    stable    0.9.14-0.RC3.2         all
phpgroupware-phpwebhosting    updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-polls            stable    0.9.14-0.RC3.2         all
phpgroupware-polls            updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-preferences      stable    0.9.14-0.RC3.2         all
phpgroupware-preferences      updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-projects         stable    0.9.14-0.RC3.2         all
phpgroupware-projects         updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-registration     stable    0.9.14-0.RC3.2         all
phpgroupware-registration     updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-setup            stable    0.9.14-0.RC3.2         all
phpgroupware-setup            updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-skel             stable    0.9.14-0.RC3.2         all
phpgroupware-skel             updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-soap             stable    0.9.14-0.RC3.2         all
phpgroupware-soap             updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-stocks           stable    0.9.14-0.RC3.2         all
phpgroupware-stocks           updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-todo             stable    0.9.14-0.RC3.2         all
phpgroupware-todo             updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-tts              stable    0.9.14-0.RC3.2         all
phpgroupware-tts              updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-wap              stable    0.9.14-0.RC3.2         all
phpgroupware-wap              updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-weather          stable    0.9.14-0.RC3.2         all
phpgroupware-weather          updates   0.9.14-0.RC3.2.woody2  all
phpgroupware-xmlrpc           stable    0.9.14-0.RC3.2         all
phpgroupware-xmlrpc           updates   0.9.14-0.RC3.2.woody2  all
phpgroupware                  stable    0.9.14-0.RC3.2         all source
phpgroupware                  updates   0.9.14-0.RC3.2.woody2  all source

	DSA 365 - several vulnerabilities


postfix-dev    stable    1.1.11-0.woody2  all
postfix-dev    updates   1.1.11-0.woody3  all
postfix-doc    stable    1.1.11-0.woody2  all
postfix-doc    updates   1.1.11-0.woody3  all
postfix-ldap   stable    1.1.11-0.woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
postfix-ldap   updates   1.1.11-0.woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
postfix-mysql  stable    1.1.11-0.woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
postfix-mysql  updates   1.1.11-0.woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
postfix-pcre   stable    1.1.11-0.woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
postfix-pcre   updates   1.1.11-0.woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
postfix        stable    1.1.11-0.woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
postfix        updates   1.1.11-0.woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 363 - denial of service, bounce-scanning

pptpd       stable    1.1.2-1.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
pptpd       updates   1.1.2-1.4   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 295 - buffer overflow

procmail    stable    3.22-4      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
procmail    updates   3.22-5      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Patched pipes.c to fix a memory allocation bug (Closes: #171514).

	Can lead to data (=mail) loss

libproc-dev  stable    1:2.0.7-8         alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libproc-dev  updates   1:2.0.7-8.woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
procps       stable    1:2.0.7-8         alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
procps       updates   1:2.0.7-8.woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Fixes ps crash when system.map is exact multiple of 1024
	  Exact same patch as for 2.0.7-10
	  By happy coincidence Debian ships some kernels that have a
	  System.map file that is modulo 1024.

radiusd-cistron  stable    1.6.6-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
radiusd-cistron  updates   1.6.6-1woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 321 - buffer overflow

libpam-smbpass    stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libpam-smbpass    updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsmbclient-dev  stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsmbclient-dev  updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsmbclient      stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsmbclient      updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
samba-common      stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
samba-common      updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
samba-doc         stable    2.2.3a-12    all
samba-doc         updates   2.2.3a-12.3  all
samba             stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
samba             updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
smbclient         stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
smbclient         updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
smbfs             stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
smbfs             updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
swat              stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
swat              updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
winbind           stable    2.2.3a-12    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
winbind           updates   2.2.3a-12.3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	DSA 262 - remote exploit

	DSA 280 - buffer overflow

semi        stable    1.14.3.cvs.2001.08.10-1        all source
semi        updates   1.14.3.cvs.2001.08.10-1woody2  all source

	DSA 339 - insecure temporary file

libmilter-dev  stable    8.12.3-4    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmilter-dev  updates   8.12.3-6.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
sendmail-doc   stable    8.12.3-4    all
sendmail-doc   updates   8.12.3-6.4  all
sendmail       stable    8.12.3-4    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
sendmail       updates   8.12.3-6.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 278 - char-to-int conversion

sendmail-wide  stable    8.12.3+3.5Wbeta-5.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
sendmail-wide  updates   8.12.3+3.5Wbeta-5.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 290 - char-to-int conversion

skkserv     stable    10.62a-4        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
skkserv     updates   10.62a-4woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
skk         stable    10.62a-4        all source
skk         updates   10.62a-4woody1  all source

	DSA 343 - insecure temporary file

slashem     stable    0.0.6E4F8-4.0woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
slashem     updates   0.0.6E4F8-4.0woody3  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	Security update by the Security Team with missing DSA

slocate     stable    2.6-1.3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
slocate     updates   2.6-1.3.1   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 252 - buffer overflow

smb2www     stable    980804-16    all source
smb2www     updates   980804-16.1  all source

	DSA 203 - arbitrary command execution

libsnmpkit-dev  stable    0.9-1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsnmpkit-dev  updates   0.9-4.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsnmpkit2     updates   0.9-4.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
snmpkit         stable    0.9-1          source
snmpkit         updates   0.9-4.woody.2  source

	Due to a maintainer bug the package libsnmpkit1 did not only
	contain libsnmpkit2.so.* but also lacked the libsnmpkit2.so
	link.  Hence, it's not exactly usable in woody.  In turn this
	renders packages like pconf-detect, gnulpr and printtool
	useless.

snort-common         stable    1.8.4beta1-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
snort-common         updates   1.8.4beta1-3.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
snort-doc            stable    1.8.4beta1-3    all
snort-doc            updates   1.8.4beta1-3.1  all
snort-mysql          stable    1.8.4beta1-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
snort-mysql          updates   1.8.4beta1-3.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
snort-rules-default  stable    1.8.4beta1-3    all
snort-rules-default  updates   1.8.4beta1-3.1  all
snort                stable    1.8.4beta1-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
snort                updates   1.8.4beta1-3.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 297 - integer overflow, buffer overflow

squirrelmail  stable    1:1.2.6-1.2  all source
squirrelmail  updates   1:1.2.6-1.3  all source

	DSA 220 - cross site scripting

sup         stable    1.8-8        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
sup         updates   1.8-8woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 353 - insecure temporary file

tcpdump     stable    3.6.2-2.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
tcpdump     updates   3.6.2-2.4   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 255 - infinite loop

	DSA 261 - infinite loop

tcptraceroute  stable    1.2-1       alpha arm hppa i386 ia64 m68k mips mipsel powerpc sparc source
tcptraceroute  stable    1.2-1.0.1   s390
tcptraceroute  updates   1.2-2       alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 330 - failure to drop root privileges

teapop-mysql  stable    0.3.4-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
teapop-mysql  updates   0.3.4-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
teapop-pgsql  stable    0.3.4-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
teapop-pgsql  updates   0.3.4-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
teapop        stable    0.3.4-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
teapop        updates   0.3.4-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 347 - SQL injection

libapache-mod-jk  stable    3.3a-4        i386
libapache-mod-jk  updates   3.3a-4woody1  i386
tomcat            stable    3.3a-4        all source
tomcat            updates   3.3a-4woody1  all source

	DSA 246 - information exposure, cross site scripting

libtomcat4-java  stable    4.0.3-3woody1  all
libtomcat4-java  updates   4.0.3-3woody2  all
tomcat4-webapps  stable    4.0.3-3woody1  all
tomcat4-webapps  updates   4.0.3-3woody2  all
tomcat4          stable    4.0.3-3woody1  all source
tomcat4          updates   4.0.3-3woody2  all source

	DSA 225 - source disclosure

traceroute-nanog  stable    6.1.1-1     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
traceroute-nanog  updates   6.1.1-1.3   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 254 - buffer overflow

	DSA 348 - integer overflow, buffer overflow

typespeed   stable    0.4.1-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
typespeed   updates   0.4.1-2.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 322 - buffer overflow

unzip       stable    5.50-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
unzip       updates   5.50-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source


bsdutils            stable    1:2.11n-4   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bsdutils            updates   1:2.11n-7   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mount               stable    2.11n-4     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mount               updates   2.11n-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
util-linux-locales  stable    2.11n-4     all
util-linux-locales  updates   2.11n-7     all
util-linux          stable    2.11n-4     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
util-linux          updates   2.11n-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Backport of rtc handling fix for newer Linux kernels (2.4.19 and
	  newer report ENOTTY instead of EINVAL if the RTC_UIE_ON ioctl()
	  is not implemented for the particular system, which is the case
	  on some non-i386 systems), patch from Maciej W. Rozycki
	  <macro@ds2.pg.gda.pl>.  Fixes: #163851
	
	Without the fix, the installation process will not work
	correctly on the affected platforms.

w3m-img     stable    0.3-2       alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
w3m-img     updates   0.3-2.4     alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc
w3m         stable    0.3-2       alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc source
w3m         updates   0.3-2.4     alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc source

	DSA 251 - missing HTML quoting

w3m-ssl     stable    0.3-2       alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc source
w3m-ssl     updates   0.3-2.4     alpha arm hppa i386 m68k mips mipsel powerpc s390 sparc source

	DSA 251 - missing HTML quoting

w3mmee-img  stable    0.3.p23.3-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
w3mmee-img  updates   0.3.p23.3-1.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
w3mmee      stable    0.3.p23.3-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
w3mmee      updates   0.3.p23.3-1.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 249 - missing HTML quoting

w3mmee-ssl  stable    0.3.p23.3-1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
w3mmee-ssl  updates   0.3.p23.3-1.5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 250 - missing HTML quoting

webfs       stable    1.17        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
webfs       updates   1.17.1      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 328 - buffer overflow

wu-ftpd-academ  stable    2.6.2-3        all
wu-ftpd-academ  updates   2.6.2-3woody2  all
wu-ftpd         stable    2.6.2-3        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
wu-ftpd         updates   2.6.2-3woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 357 - remote root exploit

	DSA 377 - insecure program execution

x-face-el   stable    1.3.6.19-1        all source
x-face-el   updates   1.3.6.19-1woody1  all source

	DSA 340 - insecure temporary file

xbl         stable    1.0k-3        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
xbl         updates   1.0k-3woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 327 - buffer overflows

	DSA 345 - buffer overflow

xfsdump     stable    2.0.1-1     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
xfsdump     updates   2.0.1-2     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 283 - insecure file creation

xfstt       stable    1.2.1-1     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
xfstt       updates   1.2.1-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 360 - several vulnerabilities

xgalaga     stable    2.0.34-18        alpha arm hppa i386 ia64 m68k mips mipsel powerpc sparc source
xgalaga     stable    2.0.34-18.0.1    s390
xgalaga     updates   2.0.34-19woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 334 - buffer overflows

xpdf-common  stable    1.00-3      all
xpdf-common  updates   1.00-3.1    all
xpdf-reader  stable    1.00-3      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
xpdf-reader  updates   1.00-3.1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
xpdf-utils   stable    1.00-3      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
xpdf-utils   updates   1.00-3.1    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
xpdf         stable    1.00-3      all source
xpdf         updates   1.00-3.1    all source

	DSA 222 - integer overflow

xtokkaetama  stable    1.0b-6        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
xtokkaetama  updates   1.0b-6woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 356 - buffer overflows

zblast-data     stable    1.2pre-5        all
zblast-data     updates   1.2pre-5woody2  all
zblast-svgalib  stable    1.2pre-5        alpha i386
zblast-svgalib  updates   1.2pre-5woody2  i386
zblast-x11      stable    1.2pre-5        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
zblast-x11      updates   1.2pre-5woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
zblast          stable    1.2pre-5        source
zblast          updates   1.2pre-5woody2  source

	DSA 369 - buffer overflow

	The alpha build failed completely because svgalib doesn't
	exist on alpha anymore in woody (i.e., its build-depends could
	not even be met), so I had to disable it.  Hence, the alpha
	package needs to be removed.

Requires further Investigation
------------------------------

These packages need further investigation.  One reason the package is
listed here could be that I'm not yet convinced this package should go
into stable, but don't want to reject it entirely at the moment.

Another reason could be that released and updated architectures are
not yet in sync.

acorn-fdisk  stable    3.0.6-4        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
acorn-fdisk  updates   3.0.6-4woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	Rebuild for stable since required for working boot-floppies;
	otherwise identical to 3.0.6-5.

atari800    stable    1.2.2-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
atari800    updates   1.2.2-1woody2  alpha arm hppa i386 ia64 m68k mips powerpc s390 sparc source

	DSA 359 - buffer overflows

	MISSING mipsel

bind9-doc    stable    1:9.2.1-2.woody.1  all
bind9-doc    updates   1:9.2.1-2.woody.2  all
bind9-host   stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bind9-host   updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
bind9        stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
bind9        updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
dnsutils     stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
dnsutils     updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libbind-dev  stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libbind-dev  updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libdns5      stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libdns5      updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libisc4      stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libisc4      updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libisccc0    stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libisccc0    updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libisccfg0   stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libisccfg0   updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
liblwres1    stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
liblwres1    updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
lwresd       stable    1:9.2.1-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
lwresd       updates   1:9.2.1-2.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	No change upload to clean up parser errors....  Closes: #179311

catdoc      stable    0.91.5-1            alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
catdoc      updates   0.91.5-1.99woody.1  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Fixed insecure /tmp use (closes: #183525)

	* Fix backported from 0.91.5-2 because it fixes a security problem.

	MISSING arm

cfs         stable    1.4.1-7     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
cfs         updates   1.4.1-7.1   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	upload to woody; cfs is not usable on s390 due to an internal
	compiler error (most probably), see bug #151564; needs to be
	rebuilt with gcc-2.95 from woody 3.0r1; no more changes than
	this changelog entry.

	TODO: Review changes

console-common  stable    0.7.14        all source
console-common  updates   0.7.14woody1  all source
dh-consoledata  stable    0.7.14        all
dh-consoledata  updates   0.7.14woody1  all

	Support the Acorn RiscStation architecture.

	TODO: Why this upload?

console-data  stable    1999.08.29-24    all source
console-data  updates   1999.08.29-24.2  all source

	* Add keymaps for sunt5-uk, sunt6-uk. Required for systems with
	these keyboards to boot. Closes: #190745.

	* Fix depends to work properly on woody. Closes: #201659.

	TODO: Why this upload?

debootstrap-udeb  updates   0.1.17.7woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
debootstrap       stable    0.1.17          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
debootstrap       updates   0.1.17.7woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* NMU

	* Rebuild of 0.1.17.8 for woody to pull in race condition fix and missing
	  package dependency fixes, among others.

	* NMU versioned the way it is so that dpkg doesn't think 0.1.17.[1-7] is
	  newer than this release, but "upgrades" (actually sidegrades) to 0.1.17.8
	  are still straightforward.

	TODO: Why?

	James once said that -udeb packages won't appear in stable, so
	this should not be a problem.

galeon-common    stable    1.2.5-0.woody.1  all
galeon-common    updates   1.2.5-0.woody.3  all
galeon-nautilus  stable    1.2.5-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
galeon-nautilus  updates   1.2.5-0.woody.3  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
galeon           stable    1.2.5-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc source
galeon           updates   1.2.5-0.woody.3  alpha arm hppa i386 ia64 m68k powerpc s390 sparc source

	* Rebuild for woody against new mozilla package (closes: #188187)

	TODO: Why?

gps         stable    0.9.4-1        alpha arm i386 m68k mips mipsel powerpc s390 sparc source
gps         stable    0.9.4-1.0.1    hppa ia64
gps         updates   0.9.4-1woody1  alpha arm i386 m68k mips mipsel powerpc s390 sparc source
rgpsp       stable    0.9.4-1        alpha arm i386 m68k mips mipsel powerpc s390 sparc
rgpsp       stable    0.9.4-1.0.1    hppa ia64
rgpsp       updates   0.9.4-1woody1  alpha arm i386 m68k mips mipsel powerpc s390 sparc

	DSA 307 - multiple vulnerabilities

	MISSING hppa
	MISSING ia64

ipmasq      stable    3.5.10      all source
ipmasq      updates   3.5.10a     all source

	* [SECURITY] Fix problem that allows an attacker to get packets through to
	the other side under netfilter.  (closes: #184803)

kaffe       stable    1:1.0.5e-0.4  arm
kaffe       stable    1:1.0.5e-0.5  alpha i386 m68k sparc source
kaffe       updates   1:1.0.5e-1    i386 source

	* Fixed a problem detecting time.h during build, source wouldn't compile.

	* Changed temporary file name allocation to use mktemp in the kaffe wrapper
	  for security reasons, closes: #191866

	TODO: Review the changes

	MISSING alpha
	MISSING arm
	MISSING m68k
	MISSING sparc

kernel-patch-2.4-grsecurity  stable    1.9.4-1     all source
kernel-patch-2.4-grsecurity  updates   1.9.4-3     all source

	* Removed patch bit that sets EXTRAVERSION. (closes: Bug#182183)

	* Fix to work with ptrace fixed 2.4.18 (otherwise the patch fails to
	  apply rendering it useless, hence medium urgency). (closes: Bug#194523)

	This update may be suited for Debian stable, however, an
	official security update would be good.

kernel-doc-2.2.20     updates   2.2.20-5woody2  all
kernel-source-2.2.20  updates   2.2.20-5woody2  all source

	DSA 336 - several vulnerabilities

	New packages

	If two older kernel packages can be removed, this can
	creep in since it is a security update.

libdbd-mysql-perl  stable    1.2216-2      arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
libdbd-mysql-perl  stable    1.2216-2.0.1  alpha
libdbd-mysql-perl  updates   1.2216-2.0.1  ia64

	* Binary-only non-maintainer upload for ia64; no source changes.

	* Rebuild for ia64: Closes: #191552

	TODO: Find out if it works, the bug submitter fell silent

libgtop-daemon  stable    1.0.13-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libgtop-daemon  updates   1.0.13-3.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
libgtop-dev     stable    1.0.13-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libgtop-dev     updates   1.0.13-3.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
libgtop1        stable    1.0.13-3    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libgtop1        updates   1.0.13-3.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
libgtop         stable    1.0.13-3    source
libgtop         updates   1.0.13-3.1  source

	DSA 301 - buffer overflow

	MISSING mips
	MISSING mipsel

masqmail    stable    0.1.16-2.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
masqmail    updates   0.1.17-2    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* fixed a segfault bug

	TODO: What bug?

mindi       stable    0.58.r5-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
mindi       updates   0.58.r5-1woody1  i386 source

	DSA 362 - insecure temporary file

	Binary packages missing

libnss-dev             stable    2:1.0.0-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
libnss-dev             updates   2:1.0.2-2          alpha arm hppa i386 ia64 m68k powerpc s390 sparc
libnss3                stable    2:1.0.0-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
libnss3                updates   2:1.0.2-2          alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-chatzilla      stable    2:1.0.0-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-chatzilla      updates   2:1.0.2-2          alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-dev            stable    2:1.0.0-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-dev            updates   2:1.0.2-2          alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-dom-inspector  stable    2:1.0.0-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-dom-inspector  updates   2:1.0.2-2          alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-js-debugger    stable    2:1.0.0-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-js-debugger    updates   2:1.0.2-2          alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-mailnews       stable    2:1.0.0-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-mailnews       updates   2:1.0.2-2          alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-xmlterm        stable    2:1.0.0-0.woody.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
mozilla-xmlterm        updates   2:1.0.2-2          alpha arm hppa i386 ia64 m68k powerpc s390 sparc

	* New upstream release includes security fix (closes:#181120)

	* fix wrong version in window-title (closes: #170665)

	* update VERSION in starup script (closes: #187141)

libmysqlclient10-dev  stable    3.23.49-8        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmysqlclient10-dev  updates   3.23.51-1woody5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmysqlclient10      stable    3.23.49-8        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libmysqlclient10      updates   3.23.51-1woody5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mysql-client          stable    3.23.49-8        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mysql-client          updates   3.23.51-1woody5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mysql-common          stable    3.23.49-8        all
mysql-common          updates   3.23.51-1woody5  all
mysql                 stable    3.23.49-8        source
mysql-dfsg            updates   3.23.51-1woody5  source
mysql-server          stable    3.23.49-8        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mysql-server          updates   3.23.51-1woody5  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	* SECURITY: Applied fix for DSA-212 that was applied to version
	3.23.49-8.2, too.

	Christian Hammers explained that 3.23.50 contains a fix
	against a bug resulting in a segementation fault that was
	fixed upstream.  3.23.51 also has some scripts changed.

	Creating a diff through both versions is not possible.  Many
	differences are made in documentation and file locations, and
	the source package was renamed as well.  I'm not convinced
	this should go into stable.

nbd-client  stable    1:1.2cvs20020320-3          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
nbd-client  updates   1:1.2cvs20020320-3.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
nbd-server  stable    1:1.2cvs20020320-3          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
nbd-server  updates   1:1.2cvs20020320-3.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
nbd         stable    1:1.2cvs20020320-3          source
nbd         updates   1:1.2cvs20020320-3.woody.1  source

	* Backported the following fixes to serious bugs from unstable version:

	  - rewrite /etc/nbd-server, even if it doesn't exist yet (not doing so
	    makes package uninstallable)

	  - make sure nbd-server.init.d doesn't kill itself (not doing so breaks
	    upgrades, while also rendering the 'stop' target quite useless)

	  This closes: #179334, whilst also re-closing some bugs that should've
	  been fixed when woody was still 'frozen' instead of 'stable'.

noffle      stable    1.0.1-1            alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
noffle      updates   1.0.1-1.1.woody.2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	1.0.1-1.1:

	DSA 244 - buffer overflows

	1.0.1-1.1.woody.1:

	* Fixed init script which broke new noffle installations, closes: #181283.
	  Explanation: noffle was run as user root in /etc/init.d/noffle, and
	  created a root-owned lock file, which prevented noffle from being run
	  as user news from inetd, cron scripts, etc.

	1.0.1-1.1.woody.2:

	* Let noffle switch to news:news on startup when root is calling,
	  prevents root exploits and bad ownerships in the spool directory,
	  e.g. when running 'noffle --query' as root, closes: #168128.

libparted1.4-dbg   stable    1.4.24-4          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libparted1.4-dbg   updates   1.4.24-4.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libparted1.4-dev   stable    1.4.24-4          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libparted1.4-dev   updates   1.4.24-4.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libparted1.4-i18n  stable    1.4.24-4          all
libparted1.4-i18n  updates   1.4.24-4.woody.1  all
libparted1.4       stable    1.4.24-4          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libparted1.4       updates   1.4.24-4.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
parted-bf          stable    1.4.24-4          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
parted-bf          updates   1.4.24-4.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
parted-doc         stable    1.4.24-4          all
parted-doc         updates   1.4.24-4.woody.1  all
parted             stable    1.4.24-4          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
parted             updates   1.4.24-4.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	TODO: Why should this be added to Debian stable?

phpmyadmin  stable    2.2.3-1          all source
phpmyadmin  updates   2.5.2-1woody2.1  all source

	* Stable security backport, closes: #203233.

	* The upstream also fixes XSS vulnerabilities, information
	  encoding weakness and transversal directory attack. This was
	  mentioned in Debian.NEWS file only, not changelog.Debian file.
	  See http://www.securityfocus.com/archive/1/325641. Closes: #203092.

	* CVS fix: another patch for path disclosure problem.

	* CVS fix: a user could not edit his own global privileges.

rinetd      stable    0.61-1      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
rinetd      updates   0.61-1.1    alpha arm hppa ia64 m68k mips mipsel powerpc s390 sparc source

	DSA 289 - incorrect memory resizing

	MISSING i386

libsane-dev    stable    1.0.7-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsane-dev    updates   1.0.7-4     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsane        stable    1.0.7-3.2   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
libsane        updates   1.0.7-4     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
sane-backends  stable    1.0.7-3.2   source
sane-backends  updates   1.0.7-4     source

	* Fixed a possible remotely exploitable bug.

seti-applet  stable    0.2.2-1.1   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
seti-applet  updates   0.2.2-2     alpha arm hppa i386 ia64 m68k mips powerpc s390 sparc source

	* Added CFLAGS and CONFIG_FLAGS to find libgtop header files.
	  (Closes: #140659)

	* Fixed installation (Closes: #168930)

	* Delete symlink on clean target, so that subsequent builds don't fail.

	Amaya: The version in stable didn't build from source or
	install.  This upload fixes that. No changes in the orignial
	package, just in the debian/ dir. No new features, no new bugs.

	MISSING mipsel

tiger       stable    2.2.4-22    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
tiger       updates   2.2.4-23    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Upload to the proposed-updates queue to be considered by the
	  Release Manager. This version generated for the benefit of
	  stable users (which are still encouraged to use 3.2 since
	  it fixes many more bugs and can be backported easily, but still).
	  This package fixes some open (and important) bugs including a
	  security bug and also updates data (DSA listing) to latest
	  available information. Bugs fixed:

	* Fixed buffer overflow discovered by Steve Grub in realpath.c
	  this might be able to be locally exploited if a user can make
	  a _very_ long path in the system but it might be difficult to
	  pull off local privilege escalation with this one. Still, worth
	  fixing. The fix has been backported from the 3.2 version.

	* Fixed the installation so all scripts are set as executable (I'm
	  not incorporating all the Makefile changes done on 3.2 but it's now
	  better) this has the side effect of now setting check_listeningprocs
	  executable and properly installing check_sendmail
	  (Closes: #157695, #172377)

	* No longer depends on essential packages as per policy, since there
	  are no known versioned dependancies (there are for the 3.x release)
	  for any of them (Closes: #170461)

	* Updated deb_advisories to include all the latest
	  Debian Security Advisories so that the deb_checkadvisories check
	  makes sense (was over a year out of date). Notice that, without this
	  update the deb_checkadvisories is useless. This check is still useful
	  for those running a system without internet access (i.e. cannot check
	  updates at security.debian.org). If there is a new release of the
	  CD images this might turn out useful for users updating through CD.

wget        stable    1.8.1-6     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
wget        updates   1.8.1-6.1   alpha arm hppa i386 ia64 m68k mips powerpc s390 sparc source

	DSA 209 - directory traversal

	MISSING mipsel

xaos        stable    3.0-23        alpha arm hppa i386 ia64 m68k mips mipsel powerpc sparc source
xaos        stable    3.0-23.0.1    s390
xaos        updates   3.0-23woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc sparc source

	DSA 310 - improper setuid-root execution

	MISSING s390

xnc         stable    4.4.7-3          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
xnc         updates   4.4.7-3.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Version prepared for 3.0r1. Closes: #149191

	* Previous version was causing Debian menu system breakage when installed.
	  Update-menus was completly disfunctional.
	  The fix is more than trivial - required me to change 2 chars in rules,
	  and add "_" to two filenames. Please let this version go into stable.

	TODO: Find out if this update is required

yaboot      stable    1.3.6-1         powerpc source
yaboot      updates   1.3.10-0woody1  powerpc source

	* Backport yaboot 1.3.10 to stable (See bug #190439).

	  - This is necessary to boot/install on recent Apple hardware.

	  - Ethan reports that the one line change between 1.3.9 and 1.3.10 is
	    critical.

zlib-bin      stable    1:1.1.4-1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
zlib-bin      updates   1:1.1.4-1.0woody0  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
zlib1-altdev  stable    1:1.1.4-1          i386
zlib1-altdev  updates   1:1.1.4-1.0woody0  i386
zlib1g-dev    stable    1:1.1.4-1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
zlib1g-dev    updates   1:1.1.4-1.0woody0  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
zlib1g        stable    1:1.1.4-1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
zlib1g        updates   1:1.1.4-1.0woody0  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
zlib1         stable    1:1.1.4-1          i386
zlib1         updates   1:1.1.4-1.0woody0  i386
zlib          stable    1:1.1.4-1          source
zlib          updates   1:1.1.4-1.0woody0  source

	* Define HAS_vsnprintf in gzio.c in order to avoid buffer overflows
	  (closes: #184763).

	* Remove user Emacs variables from changelog.

Rejected Packages
-----------------

These packages don't meet the requirements and will be rejected (if
katie supports that, otherwise we'll just carry them with us until the
end of time).

cacti       stable    0.6.7-2     all source
cacti       updates   0.6.7-4     all source

	Misc bugfixes, not applicable for Debian stable.

file-mmagic          stable    1.15-2        source
file-mmagic          updates   1.15-3woody1  source
libfile-mmagic-perl  stable    1.15-2        all
libfile-mmagic-perl  updates   1.15-3woody1  all

	Removed invalid character in audio/x-wav.

	Not applicable for Debian stable

gs          stable    6.53-3         alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
gs          updates   6.53-3.woody1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Rebuild the last changes for woody.

	* Change build dependency back to libgimpprint-dev.

	Not applicable for Debian stable

hylafax-client  stable    1:4.1.1-1.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
hylafax-client  updates   1:4.1.1-1.2  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
hylafax-doc     stable    1:4.1.1-1.1  all
hylafax-doc     updates   1:4.1.1-1.2  all
hylafax-server  stable    1:4.1.1-1.1  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
hylafax-server  updates   1:4.1.1-1.2  alpha arm hppa i386 ia64 m68k powerpc s390 sparc
hylafax         stable    1:4.1.1-1.1  source
hylafax         updates   1:4.1.1-1.2  source

	* NMU by Giuseppe Sacco

	* The ghostscript fonts where looked for among many directories. If
	  some of these directories wasn't existing then a message was
	  written for each of them. Now the message is printed only if all
	  directories are missing (Closes: #146874)

	* fixed the way configure looks for awk. (Closes: #153488)

	* Added g++ as build dep.

initrd-tools  stable    0.1.32woody.3  all source
initrd-tools  updates   0.1.32woody.5  all source

	* Load IDE PCI drivers if present.

	* Handle ide module names from ac tree.

	* Fixed merge errors in IDE change.

	Doesn't seem applicable for Debian stable

nothing	nothing nothing

	* New upstream release.

	Binary packages got lost anyway...

kernel-headers-2.2.25         updates   2.2.25-1    alpha
kernel-image-2.2.25-alpha     updates   2.2.25-1    source
kernel-image-2.2.25-generic   updates   2.2.25-1    alpha
kernel-image-2.2.25-jensen    updates   2.2.25-1    alpha
kernel-image-2.2.25-nautilus  updates   2.2.25-1    alpha
kernel-image-2.2.25-smp       updates   2.2.25-1    alpha

	* New upstream release.

	 . Fixes the ptrace security hole.

kernel-headers-2.2.25-compact  updates   2.2.25-1    i386
kernel-headers-2.2.25-idepci   updates   2.2.25-1    i386
kernel-headers-2.2.25          updates   2.2.25-1    i386
kernel-image-2.2.25-compact    updates   2.2.25-1    i386
kernel-image-2.2.25-i386       updates   2.2.25-1    source
kernel-image-2.2.25-idepci     updates   2.2.25-1    i386
kernel-image-2.2.25            updates   2.2.25-1    i386

	* New upstream release.

	 . Fixes the ptrace security hole.

kernel-headers-2.4.18-generic    stable    2.4.18-5.0.1    alpha
kernel-headers-2.4.18-1-generic  updates   2.4.18-10       alpha
kernel-headers-2.4.18-smp        stable    2.4.18-5.0.1    alpha
kernel-headers-2.4.18-1-smp      updates   2.4.18-10       alpha
kernel-headers-2.4.18            stable    2.4.18-5.0.1    alpha
kernel-headers-2.4.18-1          updates   2.4.18-10       alpha
kernel-image-2.4.18-alpha        stable    2.4.18-5        source
kernel-image-2.4.18-1-alpha      updates   2.4.18-10       source
kernel-image-2.4.18-generic      stable    2.4.18-5.0.1    alpha
kernel-image-2.4.18-1-generic    updates   2.4.18-10       alpha
kernel-image-2.4.18-smp          stable    2.4.18-5.0.1    alpha
kernel-image-2.4.18-1-smp        updates   2.4.18-10       alpha

	DSA 358 - several vulnerabilities

	The bugfix changed the modules ABI, so the package name is changed,
	but it is the same code + security patches only.  However, then the
	packages cannot be updated unless all modules packages that depend on
	them were altered as well.

kernel-headers-2.4.18-386               stable    2.4.18-5        i386
kernel-headers-2.4.18-1-386             updates   2.4.18-11       i386
kernel-headers-2.4.18-586tsc            stable    2.4.18-5        i386
kernel-headers-2.4.18-1-586tsc          updates   2.4.18-11       i386
kernel-headers-2.4.18-686-smp           stable    2.4.18-5        i386
kernel-headers-2.4.18-1-686-smp         updates   2.4.18-11       i386
kernel-headers-2.4.18-686               stable    2.4.18-5        i386
kernel-headers-2.4.18-1-686             updates   2.4.18-11       i386
kernel-headers-2.4.18-k6                stable    2.4.18-5        i386
kernel-headers-2.4.18-1-k6              updates   2.4.18-11       i386
kernel-headers-2.4.18-k7                stable    2.4.18-5        i386
kernel-headers-2.4.18-1-k7              updates   2.4.18-11       i386
kernel-headers-2.4.18                   stable    2.4.18-5        i386
kernel-headers-2.4.18-1                 updates   2.4.18-11       i386
kernel-image-2.4.18-386                 stable    2.4.18-5        i386
kernel-image-2.4.18-1-386               updates   2.4.18-11       i386
kernel-image-2.4.18-586tsc              stable    2.4.18-5        i386
kernel-image-2.4.18-1-586tsc            updates   2.4.18-11       i386
kernel-image-2.4.18-686-smp             stable    2.4.18-5        i386
kernel-image-2.4.18-1-686-smp           updates   2.4.18-11       i386
kernel-image-2.4.18-686                 stable    2.4.18-5        i386
kernel-image-2.4.18-1-686               updates   2.4.18-11       i386
kernel-image-2.4.18-k6                  stable    2.4.18-5        i386
kernel-image-2.4.18-1-k6                updates   2.4.18-11       i386
kernel-image-2.4.18-k7                  stable    2.4.18-5        i386
kernel-image-2.4.18-1-k7                updates   2.4.18-11       i386
kernel-pcmcia-modules-2.4.18-386        stable    2.4.18-5        i386
kernel-pcmcia-modules-2.4.18-1-386      updates   2.4.18-11       i386
kernel-pcmcia-modules-2.4.18-586tsc     stable    2.4.18-5        i386
kernel-pcmcia-modules-2.4.18-1-586tsc   updates   2.4.18-11       i386
kernel-pcmcia-modules-2.4.18-686-smp    stable    2.4.18-5        i386
kernel-pcmcia-modules-2.4.18-1-686-smp  updates   2.4.18-11       i386
kernel-pcmcia-modules-2.4.18-686        stable    2.4.18-5        i386
kernel-pcmcia-modules-2.4.18-1-686      updates   2.4.18-11       i386
kernel-pcmcia-modules-2.4.18-k6         stable    2.4.18-5        i386
kernel-pcmcia-modules-2.4.18-1-k6       updates   2.4.18-11       i386
kernel-pcmcia-modules-2.4.18-k7         stable    2.4.18-5        i386
kernel-pcmcia-modules-2.4.18-1-k7       updates   2.4.18-11       i386

	DSA 358 - several vulnerabilities

	The bugfix changed the modules ABI, so the package name is changed,
	but it is the same code + security patches only.  However, then the
	packages cannot be updated unless all modules packages that depend on
	them were altered as well.

kernel-image-2.4-generic  updates   2.4.20-1woody.8           alpha
kernel-image-2.4-smp      updates   2.4.20-1woody.8           alpha

	* New upstream release.

	* Added kernel-image-2.4-* packages.

	* Added kernel-image udebs.

	Some binary packages got lost anyway

kernel-build-2.4.19              updates   2.4.19-1                  arm
kernel-headers-2.4.19            updates   2.4.19-1                  arm
kernel-image-2.4.19-arm          updates   2.4.19-1                  source
kernel-image-2.4.19-lart         updates   2.4.19-1                  arm
kernel-image-2.4.19-netwinder    updates   2.4.19-1                  arm
kernel-image-2.4.19-riscpc       updates   2.4.19-1                  arm
kernel-image-2.4.19-riscstation  updates   2.4.19-1                  arm
kernel-image-2.4.19-shark        updates   2.4.19-1                  arm

	* Initial upload to build the various ARM kernel-images from
	  one package, much like it is done for i386.

	* Makefile.diff works around too long argument lists

	* Makefile_scsi.diff adds scsi_error.o and scsi_ioctl.o to
	  export-objs in
	  drivers/scsi/Makefile

	* Makefile_scsi_ioctl.patch exports a needed symbol for the
	  netwinder
	  images to resolve some undefined references in the scsi modules

	* get_lost_old_nettrom.patch quick and dirty hack so that CATS can
	  boot

	* ptrace.patch fixes the ptrace vulnerability

	New packages

kernel-image-2.4-386      updates   2.4.20-3woody.7           i386
kernel-image-2.4-586tsc   updates   2.4.20-3woody.7           i386
kernel-image-2.4-686-smp  updates   2.4.20-3woody.7           i386
kernel-image-2.4-686      updates   2.4.20-3woody.7           i386
kernel-image-2.4-k6       updates   2.4.20-3woody.7           i386
kernel-image-2.4-k7-smp   updates   2.4.20-3woody.7           i386
kernel-image-2.4-k7       updates   2.4.20-3woody.7           i386

	* New upstream release.

	* Renamed packet-socket udeb to socket-modules.

	* Added unix.o to socket-modules.

	* Added aacraid to scsi-modules udeb.

	* Added pcnet32 to nic-modules-extra.

	* Added kernel-image-2.4-* packages.

	* Enabled CONFIG_ACPI as a module.

	* Enabled HIGHMEM4G on 686, 686-smp and k7.

	* Enabled CONFIG_IDEDMA_PCI_AUTO.

	* Added k7-smp flavour.

	* Added floppy-modules udeb.

	* Enabled CONFIG_AIC7XXX_PROBE_EISA_VL.

	* Call dh_installdocs for kernel-pcmcia-modules.

	* Enabled sunhme.

	* Updated dependency versioned on initrd-tools since 2.4.19 broke modprobe
	  inside the initrd.

	* Moved udebs to standalone source package.

	* Fixed i386 lcall DoS (Petr Vandrovec).

	Junichi says: that leaves ALSA etc. modules out of sync,
	doesn't it?  There are several module packages that would be
	made uninstallable if you remove those kernel packages.

	Hence, we'll need to wait for all modules packages to appear
	as well until the kernel may be installed.

	Packages to remove:
	remove kernel-image-2.4.16-i386_2.4.16-1_i386.changes
	remove kernel-image-2.4.18-i386_2.4.18-5_i386.changes

	New packages

	Some included packages got lost anyway

kernel-headers-2.4.19-ia64        updates   020821.1    ia64
kernel-image-2.4.19-ia64          updates   020821.1    source
kernel-image-2.4.19-itanium-smp   updates   020821.1    ia64
kernel-image-2.4.19-itanium       updates   020821.1    ia64
kernel-image-2.4.19-mckinley-smp  updates   020821.1    ia64
kernel-image-2.4.19-mckinley      updates   020821.1    ia64
kernel-source-2.4.19-ia64         updates   020821.1    all

	* initial release of kernel image packages for ia64 based on 2.4.19

	* turn off broadcom gigE driver, change tg3 from module to built-in

	* lose several patches from previous kernel builds now merged upstream

	* update config files for 2.4.19

	New packages

kernel-headers-2.4.19     updates   2.4.19-0.woody.2          s390
kernel-image-2.4.19-s390  updates   2.4.19-0.woody.2          s390 source

	* New upstream release.

	* Replaced 2.4.17-patches by the initial 2.4.19-patch from the
	  IBM Developerworks website (released on 2002.09.13).
	  This patch includes the source code for the qdio I/O-driver which
	  was only available as object code only module so far, and support for
	  the new zSeries FCP attachment for SCSI.

	* Integrated a new kernel-patch from the IBM Developerworks
	  website which fixes a lot of problems (released on 2002.10.24).

	* Integrated the kerntypes patch from the IBM Developerworks
	  website (released on 2002.09.13).

	* Integrated the on-demand timer patch from the IBM Developerworks
	  website (released on 2002.10.24).

	* Ported the ramdisk-patch to apply on 2.4.19-kernel-source
	  (port by Bastian Blank <waldi@debian.org>).

	* Ported the cmsfs-patch to apply on 2.4.19-kernel-source
	  (port by Bastian Blank <waldi@debian.org>).

	* Removed ksyms-fix-patch (not needed any longer).

	* Removed s390-tape-.udeb.

	New packages

kernel-image-2.4-generic   updates   2.4.20-1woody.8  alpha
kernel-image-2.4-smp       updates   2.4.20-1woody.8  alpha
kernel-image-2.4-wildfire  updates   2.4.20-1woody.8  alpha

	* Rebuilt against kernel-source 2.4.20-3woody.3.

	 . Fixed ptrace security hole.

	 . Changed modules ABI.
	
	New packages

	Some binary packages got lost anyway

kernel-image-2.4-386      updates   2.4.20-3woody.7  i386
kernel-image-2.4-586tsc   updates   2.4.20-3woody.7  i386
kernel-image-2.4-686-smp  updates   2.4.20-3woody.7  i386
kernel-image-2.4-686      updates   2.4.20-3woody.7  i386
kernel-image-2.4-k6       updates   2.4.20-3woody.7  i386
kernel-image-2.4-k7-smp   updates   2.4.20-3woody.7  i386
kernel-image-2.4-k7       updates   2.4.20-3woody.7  i386

	* Rebuilt against kernel-source 2.4.20-3woody.2.

	 . Fixed ptrace security hole.

	 . Changed modules ABI.
	
	New packages

	Some binary packages got lost anyway

kernel-build-2.4.20-2           updates   2.4.20-1woody.8  alpha
kernel-headers-2.4.20-2         updates   2.4.20-1woody.8  alpha
kernel-image-2.4-generic        updates   2.4.20-1woody.8  alpha
kernel-image-2.4-smp            updates   2.4.20-1woody.8  alpha
kernel-image-2.4-wildfire       updates   2.4.20-1woody.8  alpha
kernel-image-2.4.20-2-alpha     updates   2.4.20-1woody.8  source
kernel-image-2.4.20-2-generic   updates   2.4.20-1woody.8  alpha
kernel-image-2.4.20-2-smp       updates   2.4.20-1woody.8  alpha
kernel-image-2.4.20-2-wildfire  updates   2.4.20-1woody.8  alpha

	* Modify System.map for modutils << 2.4.17.

	* Rebuilt against kernel-source 2.4.20-3woody.5.

	 . Fixed hashing exploits in network stack (David S. Miller).

	* Changed modules ABI.

	* Rebuilt against kernel-source 2.4.20-3woody.6.

	  . Fixed TIOCCONS and writing to /dev/console.

	  . Fixed hashing exploits in fragment processing.

	* Rebuilt against kernel-source 2.4.20-3woody.7.

	  . Made /proc/tty/driver root-only (CAN-2003-0461).

	  . Fixed exec file handling semantics (CAN-2003-0462, CAN-2003-0476).

	  . Fixed sunrpc UDP reuse bug in net/sunrpc/svcsock.c (CAN-2003-0464).

	  . Fixed unchecked copy_to_user in fs/proc/proc_misc.c.

	  . Fixed ptrace/proc bug in fs/proc/base.c (CAN-2003-0501).

	  . Fixed bridging security issues (CAN-2003-055[012]).

	* Rebuilt against kernel-source 2.4.20-3woody.10.

	  . Fixed signed comparison in fs/nfsd/nfs3xdr.c.

	New packages

kernel-build-2.4.20-2                   updates   2.4.20-3woody.7  i386
kernel-headers-2.4.20-2                 updates   2.4.20-3woody.7  i386
kernel-image-2.4-386                    updates   2.4.20-3woody.7  i386
kernel-image-2.4-586tsc                 updates   2.4.20-3woody.7  i386
kernel-image-2.4-686-smp                updates   2.4.20-3woody.7  i386
kernel-image-2.4-686                    updates   2.4.20-3woody.7  i386
kernel-image-2.4-k6                     updates   2.4.20-3woody.7  i386
kernel-image-2.4-k7-smp                 updates   2.4.20-3woody.7  i386
kernel-image-2.4-k7                     updates   2.4.20-3woody.7  i386
kernel-image-2.4.20-2-386               updates   2.4.20-3woody.7  i386
kernel-image-2.4.20-2-586tsc            updates   2.4.20-3woody.7  i386
kernel-image-2.4.20-2-686-smp           updates   2.4.20-3woody.7  i386
kernel-image-2.4.20-2-686               updates   2.4.20-3woody.7  i386
kernel-image-2.4.20-2-k6                updates   2.4.20-3woody.7  i386
kernel-image-2.4.20-2-k7-smp            updates   2.4.20-3woody.7  i386
kernel-image-2.4.20-2-k7                updates   2.4.20-3woody.7  i386
kernel-pcmcia-modules-2.4.20-2-386      updates   2.4.20-3woody.7  i386
kernel-pcmcia-modules-2.4.20-2-586tsc   updates   2.4.20-3woody.7  i386
kernel-pcmcia-modules-2.4.20-2-686-smp  updates   2.4.20-3woody.7  i386
kernel-pcmcia-modules-2.4.20-2-686      updates   2.4.20-3woody.7  i386
kernel-pcmcia-modules-2.4.20-2-k6       updates   2.4.20-3woody.7  i386
kernel-pcmcia-modules-2.4.20-2-k7-smp   updates   2.4.20-3woody.7  i386
kernel-pcmcia-modules-2.4.20-2-k7       updates   2.4.20-3woody.7  i386

	* Reverted initrd location change that crept in.

	* Rebuilt against kernel-source 2.4.20-3woody.5.

	 . Fixed TSS I/O bitmap initialisation in arch/i386/kernel/ioport.c.

	 . Fixed hashing exploits in network stack (David S. Miller).

	* Changed modules ABI.

	* Rebuilt against kernel-source 2.4.20-3woody.6.

	  . Fixed mxcsr security hole in arch/i386/kernel/i387.c.

	  . Fixed TIOCCONS and writing to /dev/console.

	  . Fixed hashing exploits in fragment processing.

	* Rebuilt against kernel-source 2.4.20-3woody.7.

	  . Made /proc/tty/driver root-only (CAN-2003-0461).

	  . Fixed exec file handling semantics (CAN-2003-0462, CAN-2003-0476).

	  . Fixed sunrpc UDP reuse bug in net/sunrpc/svcsock.c (CAN-2003-0464).

	  . Fixed unchecked copy_to_user in fs/proc/proc_misc.c.

	  . Fixed ptrace/proc bug in fs/proc/base.c (CAN-2003-0501).

	  . Fixed bridging security issues (CAN-2003-055[012]).

	* Rebuilt against kernel-source 2.4.20-3woody.10.

	  . Fixed signed comparison in fs/nfsd/nfs3xdr.c

	* Rebuilt against kernel-source 2.4.20-3woody.11.

	  . Fixed steal_locks race.

	New packages

kernel-build-2.4.20-2           updates   2.4.20-1woody.8  alpha
kernel-headers-2.4.20-2         updates   2.4.20-1woody.8  alpha
kernel-image-2.4-generic        updates   2.4.20-1woody.8  alpha
kernel-image-2.4-smp            updates   2.4.20-1woody.8  alpha
kernel-image-2.4-wildfire       updates   2.4.20-1woody.8  alpha
kernel-image-2.4.20-2-alpha     updates   2.4.20-1woody.8  source
kernel-image-2.4.20-2-generic   updates   2.4.20-1woody.8  alpha
kernel-image-2.4.20-2-smp       updates   2.4.20-1woody.8  alpha
kernel-image-2.4.20-2-wildfire  updates   2.4.20-1woody.8  alpha

	* New upstream release.

	* Enabled LEGACY_START_ADDRESS in generic image.

	* Added UP wildfire flavour.

	* Depend on initrd-tools 0.1.32woody.1 so that TGA FB can be load correctly.

	* Moved udebs to standalone source package.

	* Consolidated flavoured kernel header packages into one.

	* Disabled EPATC8 by default (see i386).

	* Disabled CONFIG_NET_SCH_INGRESS (see i386).

	* Options disabled on wildfire since they do not compile:

	 . CONFIG_ISTALLION

	 . CONFIG_SOUND_VIA82CXXX

	* Disabled CONFIG_INET_ECN again.

	* Rebuilt against kernel-source 2.4.20-3woody.1.

	* Fixed ethernet packet padding information leak (2.4ac, see #176178):

	* Rebuilt against kernel-source 2.4.20-3woody.11.

	  . Fixed steal_locks race.

	New packages

kernel-image-2.4-386      updates   2.4.20-3woody.7  i386
kernel-image-2.4-586tsc   updates   2.4.20-3woody.7  i386
kernel-image-2.4-686-smp  updates   2.4.20-3woody.7  i386
kernel-image-2.4-686      updates   2.4.20-3woody.7  i386
kernel-image-2.4-k6       updates   2.4.20-3woody.7  i386
kernel-image-2.4-k7-smp   updates   2.4.20-3woody.7  i386
kernel-image-2.4-k7       updates   2.4.20-3woody.7  i386

	* New upstream release.

	* Reenabled CONFIG_VIDEO_SELECT since CONFIG_VIDEO_VESA is now conditional.

	* Moved udebs to standalone source package.

	* Enabled CONFIG_HOTPLUG_PCI_ACPI.

	* Enabled CONFIG_VESA_FB as a module.

	* Depend on initrd-tools 0.1.32woody.1 so that VESA FB can be loaded
	  correctly.

	* Disabled EPATC8 by default.

	* Disabled CONFIG_NET_SCH_INGRESS.

	* Consolidated flavoured kernel header packages into one.

	* Disabled CONFIG_INET_ECN again.

	* Rebuilt against kernel-source 2.4.20-3woody.1.

	* Fixed ethernet packet padding information leak (2.4ac, see #176178):

	Some binary package got lost anyway

kernel-headers-2.4.20-bf2.4         updates   2.4.20-5    i386
kernel-image-2.4.20-bf2.4           updates   2.4.20-5    i386
kernel-image-2.4.20-i386bf          updates   2.4.20-5    source
kernel-pcmcia-modules-2.4.20-bf2.4  updates   2.4.20-5    i386

	* compiled selected NIC drivers monolithically, to aid PXE booting for
	  on-board NIC's (Closes: #178556)

	* Added EHCI (USB 2.0) module support (Closes: #183894)

	* Removed automatic pcmcia (external) module build, it does not
	  work properly.

	New packages

kernel-headers-2.4.20-sparc    updates   26.potato.1  all
kernel-image-2.4.20-sun4u-smp  updates   26.potato.1  sparc
kernel-image-2.4.20-sun4u      updates   26.potato.1  sparc
kernel-image-sparc-2.4         stable    26           source
kernel-image-sparc-2.4         updates   26.potato.1  source

	* Compile against newer kernel source for ptrace fix.

	* Added UltraSPARC I HME ethernet patch.

	Hmm, potato?

	Why does this add new binary packages?

kernel-patch-2.4-netwinder     updates   20030226-1  source
kernel-patch-2.4.19-netwinder  updates   20030226-1  all

	* Initial release of the netwinder patch.

	* it's the armlinux_2_4 tree from netwinder.org CVS

	New packages

kernel-patch-2.4-rmk      updates   20021025-1  source
kernel-patch-2.4.19-rmk4  updates   20021025-1  all

	* Initial release of the rmk kernel patch series.

	* Backed out the changes to the EXTRAVERSION string in the main
	  Makefile.

	* Removed a patch which corrects a comment to include/asm-arm/socket.h
	  but which is already corrected in the kernel-source package.

	New packages

kernel-patch-2.4.19-riscstation  updates   20030108    all source

	* Initial release of the riscstation specific patch

	New packages

kernel-patch-2.4.19-s390  updates   0.0.20021024-0.woody.1  all source

	* New upstream release.

	* Replaced 2.4.17-patches by the initial 2.4.19-patch from the
	  IBM Developerworks website (released on 2002.09.13).
	  This patch includes the source code for the qdio I/O-driver which
	  was only available as object code only module so far, and support for
	  the new zSeries FCP attachment for SCSI.

	* Integrated a new kernel-patch from the IBM Developerworks
	  website which fixes a lot of problems (released on 2002.10.24).

	* Integrated the kerntypes patch from the IBM Developerworks
	  website (released on 2002.09.13).

	* Integrated the on-demand timer patch from the IBM Developerworks
	  website (released on 2002.10.24).

	* Ported the ramdisk-patch to apply on 2.4.19-kernel-source
	  (port by Bastian Blank <waldi@debian.org>).

	* Ported the cmsfs-patch to apply on 2.4.19-kernel-source
	  (port by Bastian Blank <waldi@debian.org>).

	* Removed ksyms-fix-patch (not needed any longer).

	New package

	Gerhard Tonn: as long as the kernel image 2.4.19 for s390
	hasn't been accepted, the kernel-patch for 2.4.17 shouldn't be
	removed.

	Joey: There is no kernel image 2.4.19 for s390 yet, hence postponing.

kernel-patch-2.4.19-shark  updates   20030107    all source

	* Initial release of the shark specific patch

	New package

kernel-patch-usagi  stable    0.0.20020401-1  all source
kernel-patch-usagi  updates   0.0.20020401-2  all source

	* Fix reject in patching process. (closes: Bug#194908)

	* Port to latest kernel-source-2.2.22.

	Not suited for Debian stable

kernel-doc-2.2.25     updates   2.2.25-1    all
kernel-source-2.2.25  updates   2.2.25-1    all source

	* New upstream release.

	 . Fixes the ptrace security hole.

	New packages

nothing nothing nothing

	* Fixed i386 lcall DoS (Petr Vandrovec).

	Binary package got lost anyway.

	Junichi says: that leaves ALSA etc. modules out of sync,
	doesn't it?  There are several module packages that would be
	made uninstallable if you remove those kernel packages.
	
	Hence, we'll need to wait for all modules packages to appear
	as well until the kernel may be installed.

kernel-doc-2.4.20     updates   2.4.20-3woody.13  all
kernel-source-2.4.20  updates   2.4.20-3woody.13  all source

	New packages

libphp-adodb  stable    1.51-1      all source
libphp-adodb  updates   1.51-1.1    all source

	* Fix GetUpdateSQL() function problem. (Closes: #177332)
	  Old function will update all datasets in the table, because the where
	  statement wasn't created correctly.

	* Change maintainer name.

	Doesn't look suited for Debian stable

logcheck-database  stable    1.1.1-13.1          all
logcheck-database  updates   1.1.1-13.5.woody.0  all
logcheck           stable    1.1.1-13.1          all source
logcheck           updates   1.1.1-13.5.woody.0  all source
logtail            stable    1.1.1-13.1          all
logtail            updates   1.1.1-13.5.woody.0  all

	* Upload of the old code base to stable as the fixes from my NMUs
	  (1.1.1-13.2 though 1.1.1-13.5) should be included in woody. The bugs
	  closed in this upload have all been filed since woody was released.

	* Does not remove /var/lib/logcheck in the postinst.
	  (closes: #152172, #165863)

	* Now creates a temporary directory and removes it after each run.
	  (closes: #162041)

	* The ignore files are now cleaned into the temporary
	  directory. (closes: #154624)

	* Backport fix from unstable branch to reduce logtail's memory usage
	  (ref #175546)

	* Removed manpages for logcheck & logtail that were added in 1.1.1-13.2.

	Not applicable for Debian stable

lsb         stable    1.1.0-11       all source
lsb         updates   1.2-5.woody.1  all source

	Support LSB 1.2 in woody.  Includes all changes through 1.2-6 in sid.

	This package is not sufficient to make Debian stable LSB 1.3
	complient.  The only approved LSB version is 1.3.  According
	to Anthony also required: alien, kernel-(headers|source|image)
	2.4.19 and glibc, pax.  According to Tobias Burnus
	start-stop-daemon needs to be altered as well.  lsb.deb needs
	another backport.

	Matt Taggart wrote: The separate OpenI18N standard was merged
	into the LSB at 1.3 so there are additional requirements that
	are being tested for now.  These are mostly requirements on
	the commands provided by the LSB and _will_ require patches to
	fix.  I do not know if the patches have been accepted upstream
	yet.  There's a rumor that they affect performance.  there may
	need to be additional changes to glibc for the new test
	suites.

	I don't think that we can meet the LSB 1.3 with Debian stable
	without too many changes, hence LSB updates will be rejected.

lvm-common  stable    1.5.5       alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
lvm-common  updates   1.5.6woody  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Move startup script to S26 so it happens after RAID startup
	Closes: #187198

mew-bin     stable    1:2.2-3     alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mew-bin     updates   1:2.2-3.1   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
mew         stable    1:2.2-3     all source
mew         updates   1:2.2-3.1   all source

	* NMU to fix potential security hole.

	* mew-smtp.el (mew-smtp-insert-file):
	   Don't send an old message buffer to other recipient by accident.
	   mew-smtp-insert-file removes an old message buffer if exists.
	   backport from Mew 3.0.69 by Tatsuya Kinoshita <tats@vega.ocn.ne.jp>
	   closes: Bug#186086

	This problem has not been agreed to justify a security update for Debian stable

mozilla-locale-de-at  stable    1.0.0-0     all source
mozilla-locale-de-at  updates   1.0.2-1     all source

	New upstream release

openssh            stable    1:3.4p1-1          source
openssh            updates   1:3.4p1-1.woody.1  source
ssh-askpass-gnome  stable    1:3.4p1-1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ssh-askpass-gnome  updates   1:3.4p1-1.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ssh                stable    1:3.4p1-1          alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
ssh                updates   1:3.4p1-1.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc

	* ssh-keysign.c: Backport upstream patch to free input data only once it's
	  no longer required. ssh-keysign was completely broken without this,
	  breaking hostbased authentication (closes: #189443).

	This is a normal bug.  Host-based auth is not vital to ssh,
	the package is not rendered unusable, except in a rare case.
	Hence, this should be documented in the errata section but
	doesn't require an update to stable.

pcmcia-modules-2.4.20-bf2.4  updates   3.1.33-6k1  i386

	* Built for kernel-image-2.4.20-bf2.4.

qpopper-drac  stable    4.0.4-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
qpopper-drac  updates   4.0.4-2.woody.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
qpopper       stable    4.0.4-2.woody.1  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
qpopper       updates   4.0.4-2.woody.4  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	4.0.4-2.woody.3: DSA 259 - mail user privilege escalation

	4.0.4-2.woody.4: Fix wrong XTND XMIT
	directory. (closes:Bug#192387), not applicable for Debian stable

replicator  stable    2.1.0       i386 source
replicator  updates   2.9         i386 source

	* repli-sync works (closes: #106311)

	* now works with woody (closes: #155656)

	* this release contains all bugfixes up to version 3.0-2

	* documentation updated to reflect woody support

	* bugfixe : parsing of @networks

	* /etc/replicator* removed from exlude list

	* $mkfs added to choose filesystem on target

	* repli-dialog show the name of installation device and $mkfs

	* better handling of kernel keymap (woody compliant)

	* when partitionning, the first 512 bytes of the partitions are filed with 0 (Bertrand Louis-Lucas)

	* moved all scripts to /usr/sbin (on miniroot-server and in miniroot) : closes #106311

	* closes: #112557

	Not applicable for Debian stable

spamassassin  stable    2.20-1woody   alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
spamassassin  updates   2.20-1woody2  alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	2.20-1woody1 (pre-approved):

	* The "I hate Osirusoft" release. The RBL relays.osirusoft.com
	  has gone down, blacklisting every IP. As a result, every message
	  gets an extra 3.0 points, causing many false positives.

	* This release removes the osirusoft lookups.

	2.20-1woody2 (not approved):

	* The "I was born 29 years ago" release ;)

	* Applied patch to solve a rounding problem from:
	  http://bugzilla.spamassassin.org/show_bug.cgi?id=893

ssed        stable    3.57a-1        alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
ssed        updates   3.60-1.1woody  alpha hppa i386 ia64 m68k mips mipsel powerpc s390 source

	* Rebuild with stable chroot (the previous upload was built on testing by
	mistake) (Closes: #202062).

	MISSING arm
	MISSING sparc

subterfugue  stable    0.2.1a-1    i386 source
subterfugue  updates   0.2.1a-1.2  i386 source

	* Add many more syscalls.  This is needed to run on newer 2.4 kernels, and
	  since a 2.4 kernel is required to run the program at all, this is
	  important.  The old version crashes and burns if used under a newish 2.4
	  kernel.  Release manager, please consider this for an update.
	  (Closes: Bug#192733)

	* update MAXCALLNUMBER.

thttpd-util  stable    2.21b-11    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc
thttpd-util  updates   2.21b-11.1  m68k
thttpd       stable    2.21b-11    alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
thttpd       updates   2.21b-11.1  m68k

	* Non-maintainer upload by the Security Team

	* Applied patch by Jef Poskanzer to avoid information leak by
	  disallowing a vhost to start with a ``.'' or contain a ``/''
	  (libhttpd.c, mini_httpd.c, CAN-2002-1562,
	  http://marc.theaimsgroup.com/?l=thttpd&m=103609565110472&w=2)

	WTF is that?  No source, no other architectures, no packages
	on security.debian.org.  Oh, wait... it's still pending, I
	guess it was rejected or something.

tilp        stable    5.03-1      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
tilp        updates   5.03-2      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Fixed postrm script to not barf on purge (closes: Bug#153718).

	* Fixed segfault when opening a directory not readable by user.

	* Fixed permissions on newly-created directories (closes: Bug#153517).

webmin-apache             stable    0.94-7      all
webmin-apache             updates   0.94-11     all
webmin-bind8              stable    0.94-7      all
webmin-bind8              updates   0.94-11     all
webmin-burner             stable    0.94-7      all
webmin-burner             updates   0.94-11     all
webmin-cluster-software   stable    0.94-7      all
webmin-cluster-software   updates   0.94-11     all
webmin-cluster-useradmin  stable    0.94-7      all
webmin-cluster-useradmin  updates   0.94-11     all
webmin-core               stable    0.94-7      all
webmin-core               updates   0.94-11     all
webmin-cpan               stable    0.94-7      all
webmin-cpan               updates   0.94-11     all
webmin-dhcpd              stable    0.94-7      all
webmin-dhcpd              updates   0.94-11     all
webmin-exports            stable    0.94-7      all
webmin-exports            updates   0.94-11     all
webmin-fetchmail          stable    0.94-7      all
webmin-fetchmail          updates   0.94-11     all
webmin-grub               stable    0.94-7      i386
webmin-grub               updates   0.94-11     i386
webmin-heartbeat          stable    0.94-7      all
webmin-heartbeat          updates   0.94-11     all
webmin-inetd              stable    0.94-7      all
webmin-inetd              updates   0.94-11     all
webmin-jabber             stable    0.94-7      all
webmin-jabber             updates   0.94-11     all
webmin-lpadmin            stable    0.94-7      all
webmin-lpadmin            updates   0.94-11     all
webmin-mon                stable    0.94-7      all
webmin-mon                updates   0.94-11     all
webmin-mysql              stable    0.94-7      all
webmin-mysql              updates   0.94-11     all
webmin-nis                stable    0.94-7      all
webmin-nis                updates   0.94-11     all
webmin-postfix            stable    0.94-7      all
webmin-postfix            updates   0.94-11     all
webmin-postgresql         stable    0.94-7      all
webmin-postgresql         updates   0.94-11     all
webmin-ppp                stable    0.94-7      all
webmin-ppp                updates   0.94-11     all
webmin-qmailadmin         stable    0.94-7      all
webmin-qmailadmin         updates   0.94-11     all
webmin-quota              stable    0.94-7      all
webmin-quota              updates   0.94-11     all
webmin-raid               stable    0.94-7      all
webmin-raid               updates   0.94-11     all
webmin-samba              stable    0.94-7      all
webmin-samba              updates   0.94-11     all
webmin-sendmail           stable    0.94-7      all
webmin-sendmail           updates   0.94-11     all
webmin-software           stable    0.94-7      all
webmin-software           updates   0.94-11     all
webmin-squid              stable    0.94-7      all
webmin-squid              updates   0.94-11     all
webmin-sshd               stable    0.94-7      all
webmin-sshd               updates   0.94-11     all
webmin-ssl                updates   0.94-11     all
webmin-status             stable    0.94-7      all
webmin-status             updates   0.94-11     all
webmin-stunnel            stable    0.94-7      all
webmin-stunnel            updates   0.94-11     all
webmin-wuftpd             stable    0.94-7      all
webmin-wuftpd             updates   0.94-11     all
webmin-xinetd             stable    0.94-7      all
webmin-xinetd             updates   0.94-11     all
webmin                    stable    0.94-7      all source
webmin                    updates   0.94-11     all source

	0.94-7woody1: DSA 319 - session ID spoofing

	0.94-10: 

	* -8  and -9 were never uploaded.

	* Improved the generation of the self-signed certificate to make it
	  unique to the server it is being generated on.

	* Permissions for config files are tightened up.  (Closes: #183181)

	* Explicitly set shell to /bin/bash in debian/rules so as not to cause
	  problems for people who have a non-standard /bin/sh.  Thanks
	  again to Corey Wright for the patch.

	* webmin-dhcp: Path to dhcpd.leases corrected.  (Closes: #153820)

	* webmin-postfix" Labels show up in module again (Closes: #150963)

	* Undid all the mess caused by the last backport:
	  foreign_require() in web-lib.pl should work properly now.  The patch
	  mentioned in the bug isn't necessary.  (Closes: #178005)
	  This also means scanning for servers should work again. (Closes:#156529)

	*  webmin-Squid:  module no longer causes errors which make changing
	  passwords fail.  (Closes: #152292)

	*  webmin-quota: module doesn't cause undefined subroutine error
	  (actually due to the bug in web-lib.pl.)  (Closes: #159610)

	* Allow colons in passwords.  (Closes: #186110) Thanks Corey Wright.

	0.94-10: 

	* webmin: added missing dependency on openssl (Closes: #202678)

	* webmin-sendmail: fixed path to sendmail PID file.  (Closes: #201085)


xsane       stable    0.84-2      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source
xsane       updates   0.84-4      alpha arm hppa i386 ia64 m68k mips mipsel powerpc s390 sparc source

	* Fix the fix : debian/control is copied at build time from control.xsane...
	Please see the previous entry for details...

Disclaimer
----------

This list intends to help the ftp-masters releasing 3.0r2.  They have the
final power to accept a package or not.  If you want to comment on
this list, please send a mail to Martin Schulze <joey@debian.org>.

Last updated 2003/09/09 18:41 MET

-- 
The good thing about standards is that there are so many to choose from.
		-- Andrew S. Tanenbaum

Please always Cc to me when replying to me on the lists.

Attachment: pgps1xXLCOrzv.pgp
Description: PGP signature


Reply to: