[Secure-testing-commits] r40076 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Feb 29 21:36:48 UTC 2016
Author: carnil
Date: 2016-02-29 21:36:48 +0000 (Mon, 29 Feb 2016)
New Revision: 40076
Modified:
data/CVE/list
Log:
Mark CVE-2016-1544/nghttp2 as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-29 21:34:21 UTC (rev 40075)
+++ data/CVE/list 2016-02-29 21:36:48 UTC (rev 40076)
@@ -3408,6 +3408,7 @@
CVE-2016-1544 [out of memory error due to unlimited incoming HTTP header fields]
RESERVED
- nghttp2 1.7.1-1
+ [jessie] - nghttp2 <no-dsa> (Minor issue)
NOTE: Fix spread across multiple commits: https://github.com/tatsuhiro-t/nghttp2/compare/v1.7.0...v1.7.1
NOTE: Commits between 1.7.0 and 1.7.1 seem almost limited to this issue, cf.
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1308461#c3
More information about the Secure-testing-commits
mailing list