[Secure-testing-commits] r30048 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Nov 13 20:23:07 UTC 2014
Author: jmm
Date: 2014-11-13 20:23:07 +0000 (Thu, 13 Nov 2014)
New Revision: 30048
Modified:
data/CVE/list
Log:
udns fixed
another jessie no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-13 19:58:19 UTC (rev 30047)
+++ data/CVE/list 2014-11-13 20:23:07 UTC (rev 30048)
@@ -21195,6 +21195,7 @@
[squeeze] - python2.6 <no-dsa> (Not backportable)
[wheezy] - python2.6 <no-dsa> (Not backportable)
[wheezy] - python2.7 <no-dsa> (Not backportable)
+ [jessie] - python2.7 <no-dsa> (Not backportable)
[squeeze] - python3.1 <no-dsa> (Not backportable)
[wheezy] - python3.2 <no-dsa> (Not backportable)
NOTE: Upstream will change to siphash in 3.4, no backport planned
@@ -112880,7 +112881,7 @@
NOTE: Just a stub resolver Linux kernel provides source port randomisation
- adns 1.4-2 (unimportant; bug #492698)
NOTE: adns is not suitable to use with untrusted responses, documented in README.Debian
- - udns <unfixed> (bug #493599)
+ - udns 0.2-1 (bug #493599)
- libnet-dns-perl 0.63-2 (low; bug #492700)
NOTE: Source port randomization from Lenny kernel should provide sufficient protection
NOTE: since this is just a Perl nodule for DNS queries and not a high-profile server app like
More information about the Secure-testing-commits
mailing list