[Secure-testing-commits] r39861 - in data: . CVE
Guido Guenther
agx at moszumanska.debian.org
Tue Feb 23 20:22:09 UTC 2016
Author: agx
Date: 2016-02-23 20:22:09 +0000 (Tue, 23 Feb 2016)
New Revision: 39861
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Mark CVE-2015-4000 as no-dsa in squeeze
as proposed in
https://lists.debian.org/debian-lts/2015/12/msg00025.html
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-23 20:21:28 UTC (rev 39860)
+++ data/CVE/list 2016-02-23 20:22:09 UTC (rev 39861)
@@ -20277,6 +20277,7 @@
{DSA-3339-1 DSA-3324-1 DSA-3316-1 DSA-3300-1 DSA-3287-1 DLA-303-1 DLA-247-1}
- openssl 1.0.2b-1
- nss 2:3.19.1-1
+ [squeeze] - nss <no-dsa> (no point in switching min key size so close to EOL)
[experimental] - openjdk-6 6b36-1.13.8-1
- openjdk-6 <removed>
- openjdk-7 7u79-2.5.6-1
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-02-23 20:21:28 UTC (rev 39860)
+++ data/dla-needed.txt 2016-02-23 20:22:09 UTC (rev 39861)
@@ -50,8 +50,6 @@
macopix (Paul Liu)
--
nss (Guido Günther)
- NOTE: Trying to sync the solution for CVE-2015-4000 with security team first
- NOTE: see https://lists.debian.org/debian-lts/2015/12/msg00025.html
--
ntp
NOTE: maintainer wants to upload package (as done before)
More information about the Secure-testing-commits
mailing list