[Secure-testing-commits] r37462 - data/CVE

Guido Guenther agx at moszumanska.debian.org
Fri Oct 30 19:16:28 UTC 2015


Author: agx
Date: 2015-10-30 19:16:28 +0000 (Fri, 30 Oct 2015)
New Revision: 37462

Modified:
   data/CVE/list
Log:
Mark squeeze as not affected by CVE-2015-4506/libvpx

The bug seems to only affect vp9 support (although it's hard to tell
from the information available).

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-10-30 19:16:18 UTC (rev 37461)
+++ data/CVE/list	2015-10-30 19:16:28 UTC (rev 37462)
@@ -9102,6 +9102,7 @@
 	- iceweasel 38.3.0esr-1
 	[squeeze] - iceweasel <end-of-life>
 	- libvpx <unfixed>
+	- squeeze <not-affected> (no vp9 support in this version)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-101/
 CVE-2015-4505 (updater.exe in Mozilla Firefox before 41.0 and Firefox ESR 38.x before ...)
 	- iceweasel <not-affected> (Windows-specific)




More information about the Secure-testing-commits mailing list