[Secure-testing-commits] r44167 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Aug 27 05:15:25 UTC 2016
Author: carnil
Date: 2016-08-27 05:15:24 +0000 (Sat, 27 Aug 2016)
New Revision: 44167
Modified:
data/CVE/list
Log:
Mark cracklib2 issue from #835386 as unfixed as by bwh' comment
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-26 23:45:39 UTC (rev 44166)
+++ data/CVE/list 2016-08-27 05:15:24 UTC (rev 44167)
@@ -2134,7 +2134,7 @@
CVE-2016-6319 (Cross-site scripting (XSS) vulnerability in app/helpers/form_helper.rb ...)
- foreman <itp> (bug #663101)
CVE-2016-XXXX [Buffer overflow processing long words]
- - cracklib2 2.9.2-3 (bug #835386)
+ - cracklib2 <unfixed> (bug #835386)
[jessie] - cracklib2 <no-dsa> (Minor issue)
[wheezy] - cracklib2 <no-dsa> (Minor issue)
NOTE: SuSE patch (not a complete fix): https://build.opensuse.org/package/view_file/Base:System/cracklib/0004-overflow-processing-long-words.patch
More information about the Secure-testing-commits
mailing list