[Secure-testing-commits] r44157 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Aug 26 13:56:35 UTC 2016
Author: jmm
Date: 2016-08-26 13:56:35 +0000 (Fri, 26 Aug 2016)
New Revision: 44157
Modified:
data/CVE/list
Log:
phpmyadmin n/a
imagemagick n/a
ecryptfs-utils no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-26 09:10:13 UTC (rev 44156)
+++ data/CVE/list 2016-08-26 13:56:35 UTC (rev 44157)
@@ -1120,6 +1120,7 @@
CVE-2016-6617
RESERVED
- phpmyadmin 4:4.6.4+dfsg1-1
+ [jessie] - phpmyadmin <not-affected> (Only affects 4.6.x)
CVE-2016-6616
RESERVED
- phpmyadmin 4:4.6.4+dfsg1-1
@@ -1147,6 +1148,7 @@
CVE-2016-6608
RESERVED
- phpmyadmin 4:4.6.4+dfsg1-1
+ [jessie] - phpmyadmin <not-affected> (Only affects 4.6.x)
CVE-2016-6607
RESERVED
- phpmyadmin 4:4.6.4+dfsg1-1
@@ -1585,10 +1587,9 @@
- grails <itp> (bug #473213)
CVE-2016-6520 [buffer overflow]
RESERVED
- - imagemagick <unfixed> (bug #833485)
+ - imagemagick <not-affected> (Only affects imagemagick 7, which isn't packaged yet, bug #833485)
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/76401e172ea3a55182be2b8e2aca4d07270f6da6
- NOTE: According to https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=30259&p=136359#p136359 only ImageMagick 7 specific?
- TODO: check
+ NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=30259&p=136359#p136359
CVE-2016-6516 (Race condition in the ioctl_file_dedupe_range function in fs/ioctl.c ...)
- linux <unfixed>
[jessie] - linux <not-affected> (Vulnerable code introduced later)
@@ -2903,6 +2904,7 @@
NOTE: https://cgit.freedesktop.org/harfbuzz/commit/?id=f96664974774bfeb237a7274f512f64aaafb201e (1.0.5)
CVE-2015-8946 (ecryptfs-setup-swap in eCryptfs before 111 does not prevent the ...)
- ecryptfs-utils 111-1
+ [jessie] - ecryptfs-utils <no-dsa> (Minor issue)
[wheezy] - ecryptfs-utils <no-dsa> (Only happens if using systemd v207 onward)
NOTE: https://launchpad.net/bugs/1447282
NOTE: Fixed by: https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857
More information about the Secure-testing-commits
mailing list