[Secure-testing-commits] r37276 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Oct 23 16:18:03 UTC 2015
Author: carnil
Date: 2015-10-23 16:18:03 +0000 (Fri, 23 Oct 2015)
New Revision: 37276
Modified:
data/CVE/list
Log:
Update status for ntp issues, one rejected by MITRE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-23 12:04:25 UTC (rev 37275)
+++ data/CVE/list 2015-10-23 16:18:03 UTC (rev 37276)
@@ -525,7 +525,6 @@
RESERVED
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
- NOTE: Duplicate of CVE-2015-5196 and might be rejected by MITRE
CVE-2015-7702
RESERVED
- ntp 1:4.2.8p4+dfsg-1
@@ -6790,13 +6789,8 @@
NOTE: http://cgit.freedesktop.org/~aplattner/libvdpau/commit/?id=d1f9c16b1a8187110e501c9116d21ffee25c0ba4
CVE-2015-5197
REJECTED
-CVE-2015-5196 [config command can be used to set the pidfile and drift file paths]
- RESERVED
- - ntp 1:4.2.8p4+dfsg-1 (low)
- [jessie] - ntp <no-dsa> (Minor issue)
- [wheezy] - ntp <no-dsa> (Minor issue)
- [squeeze] - ntp <no-dsa> (Minor issue)
- NOTE: Patch attached to http://www.openwall.com/lists/oss-security/2015/08/25/3
+CVE-2015-5196
+ REJECTED
CVE-2015-5195 [ntpd crash when processing config commands with statistics type]
RESERVED
- ntp 1:4.2.8p3+dfsg-1 (low)
More information about the Secure-testing-commits
mailing list