[Secure-testing-commits] r35081 - in data: . CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jun 21 04:16:05 UTC 2015
Author: carnil
Date: 2015-06-21 04:16:05 +0000 (Sun, 21 Jun 2015)
New Revision: 35081
Modified:
data/CVE/list
data/next-oldstable-point-update.txt
Log:
Update for CVE-2015-2305
Rationale: merge wheezy entry only once accepted by SRM into a upcoming
wheezy-point release. Move entry to the next-oldstable-point-update.txt.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-06-20 21:10:17 UTC (rev 35080)
+++ data/CVE/list 2015-06-21 04:16:05 UTC (rev 35081)
@@ -8522,9 +8522,9 @@
NOTE: affected code not built in vnc4
- sma <not-affected> (Local regex copy only used when building on Windows, see #778411)
- clamav 0.98.7+dfsg-1 (unimportant; bug #778406)
- [jessie] - clamav 0.98.7+dfsg-0+deb8u1 (unimportant; bug #778406)
- [wheezy] - clamav 0.98.7+dfsg-0+deb7u1 (unimportant; bug #778406)
- [squeeze] - clamav 0.98.7+dfsg-0+deb6u1 (unimportant; bug #778406)
+ [jessie] - clamav 0.98.7+dfsg-0+deb8u1
+ [wheezy] - clamav <no-dsa> (Fixed via wheezy-updates and included in wheezy point release)
+ [squeeze] - clamav 0.98.7+dfsg-0+deb6u1
NOTE: Only exploitable through virusdb updates, which need to be trusted anywaya
- knews <not-affected> (Uses system regex code, see #778401)
- radare2 <unfixed> (low; bug #778402)
Modified: data/next-oldstable-point-update.txt
===================================================================
--- data/next-oldstable-point-update.txt 2015-06-20 21:10:17 UTC (rev 35080)
+++ data/next-oldstable-point-update.txt 2015-06-21 04:16:05 UTC (rev 35081)
@@ -31,6 +31,7 @@
[wheezy] - phpbb3 3.0.10-4+deb7u2
CVE-2015-2305
[wheezy] - vigor 0.016-19+deb7u1
+ [wheezy] - clamav 0.98.7+dfsg-0+deb7u1
CVE-2012-6687
[wheezy] - libfcgi 2.4.0-8.1+deb7u1
CVE-2015-XXXX [lame missing check for samplerate]
More information about the Secure-testing-commits
mailing list