[Secure-testing-commits] r32848 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2015-03-13 10:28:09 +0000 (Fri, 13 Mar 2015)
New Revision: 32848

Modified:
   data/CVE/list
Log:
remove no-dsa for issue fixed in recent DSA, annotate the other entry
qt5 no-dsa for jessie


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-03-13 09:15:41 UTC (rev 32847)
+++ data/CVE/list	2015-03-13 10:28:09 UTC (rev 32848)
@@ -1645,8 +1645,8 @@
 	[wheezy] - gnupg2 <no-dsa> (Minor issue)
 	[squeeze] - gnupg2 <no-dsa> (Minor issue)
 	- gnupg 1.4.18-7 (bug #778652)
-	[wheezy] - gnupg <no-dsa> (Minor issue)
-	[squeeze] - gnupg <no-dsa> (Minor issue)
+	[wheezy] - gnupg <no-dsa> (Too intrusive to backport; minor issue)
+	[squeeze] - gnupg <no-dsa> (Too intrusive to backport; minor issue)
 	NOTE: https://blog.fuzzing-project.org/5-Multiple-issues-in-GnuPG-found-through-keyring-fuzzing-TFPA-0012015.html
 	NOTE: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=2183683bd633818dd031b090b5530951de76f392
 CVE-2015-1606 [use after free resulting from failure to skip invalid packets]
@@ -1657,7 +1657,6 @@
 	[wheezy] - gnupg2 <no-dsa> (Minor issue)
 	[squeeze] - gnupg2 <no-dsa> (Minor issue)
 	- gnupg 1.4.18-7 (bug #778652)
-	[wheezy] - gnupg <no-dsa> (Minor issue)
 	[squeeze] - gnupg <no-dsa> (Minor issue)
 	NOTE: https://blog.fuzzing-project.org/5-Multiple-issues-in-GnuPG-found-through-keyring-fuzzing-TFPA-0012015.html
 	NOTE: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=f0f71a721ccd7ab9e40b8b6b028b59632c0cc648
@@ -7474,6 +7473,7 @@
 	[wheezy] - qt4-x11 <no-dsa> (Minor issue)
 	[experimental] - qtbase-opensource-src 5.4.1+dfsg-2
 	- qtbase-opensource-src <unfixed> (bug #779580)
+	[jessie] - qtbase-opensource-src <no-dsa> (Minor issue)
 	NOTE: http://lists.qt-project.org/pipermail/announce/2015-February/000059.html
 CVE-2015-0294 [certificate algorithm consistency checking issue]
 	RESERVED