[Secure-testing-commits] r44244 - in data: . CVE
Thorsten Alteholz
alteholz at moszumanska.debian.org
Wed Aug 31 20:15:39 UTC 2016
Author: alteholz
Date: 2016-08-31 20:15:38 +0000 (Wed, 31 Aug 2016)
New Revision: 44244
Modified:
data/CVE/list
data/dla-needed.txt
Log:
mark CVE-2016-7098 as <no-dsa> like in Jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-31 19:59:59 UTC (rev 44243)
+++ data/CVE/list 2016-08-31 20:15:38 UTC (rev 44244)
@@ -69,6 +69,7 @@
RESERVED
- wget <unfixed> (low)
[jessie] - wget <no-dsa> (Minor issue)
+ [wheezy] - wget <no-dsa> (Minor issue)
NOTE: http://git.savannah.gnu.org/cgit/wget.git/commit/?id=9ffb64ba6a8121909b01e984deddce8d096c498d
NOTE: http://git.savannah.gnu.org/cgit/wget.git/commit/?id=690c47e3b18c099843cdf557a0425d701fca4957
CVE-2016-7097 [Setting a POSIX ACL via setxattr doesn't clear the setgid bit]
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-08-31 19:59:59 UTC (rev 44243)
+++ data/dla-needed.txt 2016-08-31 20:15:38 UTC (rev 44244)
@@ -70,8 +70,6 @@
--
tomcat7 (Markus Koschany)
--
-wget (Thorsten Alteholz)
---
wordpress
NOTE: Proposed patch for CVE-2015-8834 doesn't seem to work for Wheezy. DB upgrade fails.
--
More information about the Secure-testing-commits
mailing list