[Secure-testing-commits] r39306 - data/CVE
Sebastien Delafond
seb at moszumanska.debian.org
Fri Jan 29 18:35:48 UTC 2016
Author: seb
Date: 2016-01-29 18:35:48 +0000 (Fri, 29 Jan 2016)
New Revision: 39306
Modified:
data/CVE/list
Log:
[cve] Mark CVE-2016-1902 (symfony) as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-29 18:33:08 UTC (rev 39305)
+++ data/CVE/list 2016-01-29 18:35:48 UTC (rev 39306)
@@ -624,6 +624,7 @@
CVE-2016-1902 [SecureRandom's fallback not secure when OpenSSL fails]
RESERVED
- symfony 2.7.9+dfsg-1
+ [jessie] - symfony <no-dsa> (Minor issue)
NOTE: http://symfony.com/blog/cve-2016-1902-securerandom-s-fallback-not-secure-when-openssl-fails
NOTE: https://github.com/symfony/symfony/pull/17359
CVE-2016-1906 [Kubernetes api server: build config to a strategy that isn't allowed by policy]
More information about the Secure-testing-commits
mailing list