[Secure-testing-commits] r36231 - in data: . CVE
Thorsten Alteholz
alteholz at moszumanska.debian.org
Thu Aug 20 20:30:59 UTC 2015
Author: alteholz
Date: 2015-08-20 20:30:59 +0000 (Thu, 20 Aug 2015)
New Revision: 36231
Modified:
data/CVE/list
data/dla-needed.txt
Log:
set CVE-2015-2156 of netty to <no-dsa> like in Wheezy and Jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-20 20:25:46 UTC (rev 36230)
+++ data/CVE/list 2015-08-20 20:30:59 UTC (rev 36231)
@@ -11890,6 +11890,7 @@
- netty-3.9 <unfixed> (bug #793770)
[jessie] - netty-3.9 <no-dsa> (Minor issue)
- playframework <itp> (bug #646523)
+ [squeeze] - netty <no-dsa> (Minor issue)
NOTE: http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html
NOTE: https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass
NOTE: http://engineering.linkedin.com/security/look-netty%E2%80%99s-recent-security-update-cve%C2%AD-2015%C2%AD-2156
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2015-08-20 20:25:46 UTC (rev 36230)
+++ data/dla-needed.txt 2015-08-20 20:30:59 UTC (rev 36231)
@@ -23,8 +23,6 @@
--
linux-2.6
--
-netty
---
nss (Guido Günther)
--
openafs
More information about the Secure-testing-commits
mailing list