[Secure-testing-commits] r43460 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jul 25 16:13:32 UTC 2016
Author: carnil
Date: 2016-07-25 16:13:32 +0000 (Mon, 25 Jul 2016)
New Revision: 43460
Modified:
data/CVE/list
Log:
Remove more no-dsa tag entry for ntp, for wheezy since included in 1:4.2.6.p5+dfsg-2+deb7u7
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-25 14:57:48 UTC (rev 43459)
+++ data/CVE/list 2016-07-25 16:13:32 UTC (rev 43460)
@@ -21281,7 +21281,6 @@
CVE-2015-8158 [Potential Infinite Loop in ntpq]
RESERVED
- ntp 1:4.2.8p7+dfsg-1
- [wheezy] - ntp <no-dsa> (minor issue)
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit
NOTE: http://support.ntp.org/bin/view/Main/NtpBug2948
CVE-2015-8157 (SQL injection vulnerability in the Management Server in Symantec ...)
@@ -21858,21 +21857,18 @@
CVE-2015-7979 [Off-path Denial of Service (DoS) attack on authenticated broadcast mode]
RESERVED
- ntp 1:4.2.8p7+dfsg-1
- [wheezy] - ntp <no-dsa> (Minor issue, can be fixed along in a future update)
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit
NOTE: http://support.ntp.org/bin/view/Main/NtpBug2942
NOTE: https://github.com/ntp-project/ntp/commit/fe46889f7baa75fc8e6c0fcde87706d396ce1461
CVE-2015-7978 [Stack exhaustion in recursive traversal of restriction list]
RESERVED
- ntp 1:4.2.8p7+dfsg-1
- [wheezy] - ntp <no-dsa> (Minor issue, can be fixed along in a future update)
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit
NOTE: http://support.ntp.org/bin/view/Main/NtpBug2940
NOTE: https://github.com/ntp-project/ntp/commit/8a0c765f3c47633fa262356b0818788d1cf249b1
CVE-2015-7977 [reslist NULL pointer dereference]
RESERVED
- ntp 1:4.2.8p7+dfsg-1
- [wheezy] - ntp <no-dsa> (Minor issue, can be fixed along in a future update)
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit
NOTE: http://support.ntp.org/bin/view/Main/NtpBug2939
NOTE: https://github.com/ntp-project/ntp/commit/8a0c765f3c47633fa262356b0818788d1cf249b1
@@ -21894,7 +21890,6 @@
NOTE: http://support.ntp.org/bin/view/Main/NtpBug2937
CVE-2015-7974 (NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer ...)
- ntp 1:4.2.8p7+dfsg-1 (low)
- [wheezy] - ntp <no-dsa> (Minor issue, can be fixed along in a future update)
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit
NOTE: http://support.ntp.org/bin/view/Main/NtpBug2936
CVE-2015-7973 [Deja Vu: Replay attack on authenticated broadcast mode]
More information about the Secure-testing-commits
mailing list