[Secure-testing-commits] r47484 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Dec 27 07:56:36 UTC 2016 

Author: carnil
Date: 2016-12-27 07:56:35 +0000 (Tue, 27 Dec 2016)
New Revision: 47484

Modified:
   data/CVE/list
Log:
Clear some TODO items for sogo

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-12-27 07:46:45 UTC (rev 47483)
+++ data/CVE/list	2016-12-27 07:56:35 UTC (rev 47484)
@@ -20252,7 +20252,6 @@
 	[wheezy] - sogo <end-of-life> (not supported in Wheezy LTS)
 	NOTE: https://sogo.nu/bugs/view.php?id=3718
 	NOTE: http://github.com/inverse-inc/sogo/commit/64ce3c9c22fd9a28caabf11e76216cd53d0245aa
-	TODO: check versions
 CVE-2016-6190 [Meta information can be derived from UID/DTSTAMP attributes though "View the Date & Time" restricted access Backend Calendar]
 	RESERVED
 	- sogo <unfixed>
@@ -20260,7 +20259,6 @@
 	NOTE: Fix SOGo v2: https://github.com/inverse-inc/sogo/commit/717f45f640a2866b76a8984139391fae64339225
 	NOTE: Fix SOGo v3: https://github.com/inverse-inc/sogo/commit/875a4aca3218340fd4d3141950c82c2ff45b343d
 	NOTE: https://sogo.nu/bugs/view.php?id=3696
-	TODO: check versions
 CVE-2016-6189 [Private information leakage through ics/XML feeds when restricted to "View the Date & Time"]
 	RESERVED
 	- sogo <unfixed>
@@ -20268,14 +20266,12 @@
 	NOTE: Fix SOGo v2: https://github.com/inverse-inc/sogo/commit/717f45f640a2866b76a8984139391fae64339225
 	NOTE: Fix SOGo v3: https://github.com/inverse-inc/sogo/commit/875a4aca3218340fd4d3141950c82c2ff45b343d
 	NOTE: https://sogo.nu/bugs/view.php?id=3695
-	TODO: check versions
 CVE-2016-6188 [DOS attack through uploading malicious attachments]
 	RESERVED
 	- sogo <unfixed>
 	[wheezy] - sogo <end-of-life> (not supported in Wheezy LTS)
 	NOTE: http://github.com/inverse-inc/sogo/commit/32bb1456e23a32c7f45079c3985bf732dd0d276d
 	NOTE: https://sogo.nu/bugs/view.php?id=3510
-	TODO: check versions
 CVE-2016-6187 (The apparmor_setprocattr function in security/apparmor/lsm.c in the ...)
 	- linux 4.6.4-1
 	[jessie] - linux <not-affected> (Vulnerable code introduced later)
@@ -21265,7 +21261,6 @@
 	NOTE: https://github.com/inverse-inc/sogo/commit/3a5e44e7eb8b390b67a8f8a83030b49606956501
 	NOTE: https://github.com/inverse-inc/sogo/commit/c94595ea7f0f843c2d7abf25df039b2bbe707625
 	NOTE: https://sogo.nu/bugs/view.php?id=2598
-	TODO: check versions
 CVE-2014-9904 (The snd_compress_check_input function in sound/core/compress_offload.c ...)
 	{DSA-3616-1}
 	- linux 4.0.2-1

More information about the Secure-testing-commits mailing list