[Secure-testing-commits] r38324 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Tue Dec 15 17:48:16 UTC 2015


Author: jmm
Date: 2015-12-15 17:48:16 +0000 (Tue, 15 Dec 2015)
New Revision: 38324

Modified:
   data/CVE/list
Log:
dovecot no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-12-15 17:36:30 UTC (rev 38323)
+++ data/CVE/list	2015-12-15 17:48:16 UTC (rev 38324)
@@ -3006,10 +3006,10 @@
 	- steam <not-affected> (specific to the steam installor on windows)
 CVE-2015-XXXX [buffer overflow with handling pop3_deleted_flag setting]
 	- dovecot <unfixed> (bug #803223)
+	[jessie] - dovecot <no-dsa> (Affected functionality unusable)
 	[wheezy] - dovecot <not-affected> (Bug with pop3_deleted_flag introduced in 2.2.10)
 	[squeeze] - dovecot <not-affected> (Bug with pop3_deleted_flag introduced in 2.2.10)
 	NOTE: http://hg.dovecot.org/dovecot-2.2/rev/05e0700daea3
-	TODO: check
 CVE-2015-8019 [Buffer overflow when copying data from skbuff to userspace]
 	RESERVED
 	- linux <not-affected> (Vulnerable code not present)




More information about the Secure-testing-commits mailing list