[Secure-testing-commits] r38361 - in data: . CVE DSA

Moritz Muehlenhoff jmm at moszumanska.debian.org
Wed Dec 16 18:26:43 UTC 2015


Author: jmm
Date: 2015-12-16 18:26:42 +0000 (Wed, 16 Dec 2015)
New Revision: 38361

Modified:
   data/CVE/list
   data/DSA/list
   data/dsa-needed.txt
Log:
iceweasel DSA


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-12-16 18:15:50 UTC (rev 38360)
+++ data/CVE/list	2015-12-16 18:26:42 UTC (rev 38361)
@@ -5152,13 +5152,13 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-142/
 CVE-2015-7217
 	RESERVED
-	- iceweasel <unfixed>
-	[squeeze] - iceweasel <end-of-life>
+	- iceweasel <not-affected> (Iceweasel in Debian uses the system copy of gdk-pixbuf)
+	TODO: Check gdk-pixbuf
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-143/
 CVE-2015-7216
 	RESERVED
-	- iceweasel <unfixed>
-	[squeeze] - iceweasel <end-of-life>
+	- iceweasel <not-affected> (Iceweasel in Debian uses the system copy of gdk-pixbuf)
+	TODO: Check gdk-pixbuf
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-143/
 CVE-2015-7215
 	RESERVED

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2015-12-16 18:15:50 UTC (rev 38360)
+++ data/DSA/list	2015-12-16 18:26:42 UTC (rev 38361)
@@ -1,3 +1,7 @@
+[16 Dec 2015] DSA-3422-1 iceweasel - security update
+	{CVE-2015-7201 CVE-2015-7205 CVE-2015-7210 CVE-2015-7212 CVE-2015-7213 CVE-2015-7214 CVE-2015-7222}
+	[wheezy] - iceweasel 38.5.0esr-1~deb7u2
+	[jessie] - iceweasel 38.5.0esr-1~deb8u2
 [16 Dec 2015] DSA-3421-1 grub2 - security update
 	{CVE-2015-8370}
 	[wheezy] - grub2 1.99-27+deb7u3

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2015-12-16 18:15:50 UTC (rev 38360)
+++ data/dsa-needed.txt	2015-12-16 18:26:42 UTC (rev 38361)
@@ -31,8 +31,6 @@
 --
 icedtea-web
 --
-iceweasel (jmm)
---
 imagemagick/oldstable
   no-dsa bugs CVE-2014-8354 CVE-2014-8355 CVE-2014-8562 CVE-2014-8716
   should be fixed along




More information about the Secure-testing-commits mailing list