[Secure-testing-commits] r47415 - in data: . CVE
Ola Lundqvist
opal at moszumanska.debian.org
Sat Dec 24 22:21:42 UTC 2016
Author: opal
Date: 2016-12-24 22:21:42 +0000 (Sat, 24 Dec 2016)
New Revision: 47415
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Tarantool not vulnerable in stable and oldstable.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-24 21:10:11 UTC (rev 47414)
+++ data/CVE/list 2016-12-24 22:21:42 UTC (rev 47415)
@@ -10690,6 +10690,8 @@
CVE-2016-9037 [Out of bounds access in xrow_header_decode()]
RESERVED
- tarantool 1.7.2.385.g952d79e-1
+ [jessie] - tarantool <not-affected> (Not vulnerable)
+ [wheezy] - tarantool <not-affected> (Not vulnerable)
NOTE: https://github.com/tarantool/tarantool/issues/1992
NOTE: http://www.talosintelligence.com/reports/TALOS-2016-0255/
CVE-2016-9036 [Invalid handling of map16 format in mp_check()]
@@ -10697,6 +10699,8 @@
- msgpuck <unfixed> (bug #849212)
NOTE: https://github.com/rtsisyk/msgpuck/issues/12
- tarantool 1.7.2.385.g952d79e-1
+ [jessie] - tarantool <not-affected> (Not vulnerable)
+ [wheezy] - tarantool <not-affected> (Not vulnerable)
NOTE: https://github.com/tarantool/tarantool/issues/1991
NOTE: http://www.talosintelligence.com/reports/TALOS-2016-0254/
CVE-2016-9035 (An exploitable buffer overflow exists in the Joyent SmartOS ...)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-12-24 21:10:11 UTC (rev 47414)
+++ data/dla-needed.txt 2016-12-24 22:21:42 UTC (rev 47415)
@@ -110,8 +110,6 @@
--
squid3
--
-tarantool
---
tiff
NOTE: Please work in the git repo accessible to all DD (branch master-wheezy):
NOTE: https://anonscm.debian.org/cgit/collab-maint/tiff.git/log/?id=refs/heads/master-wheezy
More information about the Secure-testing-commits
mailing list