[Secure-testing-commits] r46720 - in data: CVE DLA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 2 18:39:27 UTC 2016
Author: carnil
Date: 2016-12-02 18:39:27 +0000 (Fri, 02 Dec 2016)
New Revision: 46720
Modified:
data/CVE/list
data/DLA/list
Log:
Move assigned CVEs to tomcat entries for DLA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-02 18:37:01 UTC (rev 46719)
+++ data/CVE/list 2016-12-02 18:39:27 UTC (rev 46720)
@@ -1001,12 +1001,8 @@
CVE-2016-9775 [tomcat8: privilege escalation during package removal]
- tomcat8 8.5.8-2 (bug #845385)
- tomcat7 7.0.72-3
- [wheezy] - tomcat7 7.0.28-4+deb7u7
- NOTE: Workaround entry for DLA-729-1 until CVE is assigned
NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
- tomcat6 6.0.41-3
- [wheezy] - tomcat6 6.0.45+dfsg-1~deb7u3
- NOTE: Workaround entry for DLA-728-1 until CVE is assigned
NOTE: Since 6.0.41-3, src:tomcat6 only builds a servlet and docs in Jessie
NOTE: http://www.openwall.com/lists/oss-security/2016/12/02/5
CVE-2016-9774 [tomcat8: privilege escalation during package upgrade]
Modified: data/DLA/list
===================================================================
--- data/DLA/list 2016-12-02 18:37:01 UTC (rev 46719)
+++ data/DLA/list 2016-12-02 18:39:27 UTC (rev 46720)
@@ -8,10 +8,10 @@
{CVE-2016-5290 CVE-2016-5291 CVE-2016-5296 CVE-2016-5297 CVE-2016-9064 CVE-2016-9066 CVE-2016-9079}
[wheezy] - firefox-esr 45.5.1esr-1~deb7u1
[01 Dec 2016] DLA-729-1 tomcat7 - security update
- {CVE-2016-0762 CVE-2016-5018 CVE-2016-6794 CVE-2016-6796 CVE-2016-6797 CVE-2016-6816 CVE-2016-8735}
+ {CVE-2016-0762 CVE-2016-5018 CVE-2016-6794 CVE-2016-6796 CVE-2016-6797 CVE-2016-6816 CVE-2016-8735 CVE-2016-9775}
[wheezy] - tomcat7 7.0.28-4+deb7u7
[01 Dec 2016] DLA-728-1 tomcat6 - security update
- {CVE-2016-0762 CVE-2016-5018 CVE-2016-6794 CVE-2016-6796 CVE-2016-6797 CVE-2016-6816 CVE-2016-8735}
+ {CVE-2016-0762 CVE-2016-5018 CVE-2016-6794 CVE-2016-6796 CVE-2016-6797 CVE-2016-6816 CVE-2016-8735 CVE-2016-9775}
[wheezy] - tomcat6 6.0.45+dfsg-1~deb7u3
[30 Nov 2016] DLA-727-1 gst-plugins-good0.10 - security update
{CVE-2016-9634 CVE-2016-9635 CVE-2016-9636}
More information about the Secure-testing-commits
mailing list