[Secure-testing-commits] r39750 - in data: . CVE
Ben Hutchings
benh at moszumanska.debian.org
Wed Feb 17 19:11:30 UTC 2016
Author: benh
Date: 2016-02-17 19:11:30 +0000 (Wed, 17 Feb 2016)
New Revision: 39750
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Triage new issues for squeeze
CVE-2015-8806, CVE-2016-2073 are reproducible in xmllint.
linux-2.6 still has issues to be fixed and will get another update.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-17 18:00:48 UTC (rev 39749)
+++ data/CVE/list 2016-02-17 19:11:30 UTC (rev 39750)
@@ -878,7 +878,6 @@
RESERVED
- libxml2 <unfixed> (bug #813613)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=749115
- TODO: confirm if squeeze is affected as well
CVE-2015-8805 [miscomputation bugs in secp-256r1 modulo functions]
RESERVED
- nettle 3.2-1 (bug #813679)
@@ -1114,7 +1113,6 @@
- libxml2 <unfixed> (bug #812807)
NOTE: http://www.openwall.com/lists/oss-security/2016/01/25/6
NOTE: http://www.openwall.com/lists/oss-security/2016/01/26/8 has details
- TODO: confirm if squeeze is affected as well
CVE-2016-2070 [division by zero in TCP code]
RESERVED
- linux 4.3.5-1
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-02-17 18:00:48 UTC (rev 39749)
+++ data/dla-needed.txt 2016-02-17 19:11:30 UTC (rev 39750)
@@ -40,6 +40,10 @@
--
libmatroska (Chris Lamb)
--
+libxml2
+--
+linux-2.6 (Ben Hutchings)
+--
lxc (Mike Gabriel)
NOTE: waiting for upstream feedback: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1476662/comments/77
--
More information about the Secure-testing-commits
mailing list