[Secure-testing-commits] r43669 - in data: . CVE
Thorsten Alteholz
alteholz at moszumanska.debian.org
Sun Jul 31 09:32:57 UTC 2016
Author: alteholz
Date: 2016-07-31 09:32:57 +0000 (Sun, 31 Jul 2016)
New Revision: 43669
Modified:
data/CVE/list
data/dla-needed.txt
Log:
mark libjgroups-java as no-dsa in Wheezy like in Jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-31 09:26:57 UTC (rev 43668)
+++ data/CVE/list 2016-07-31 09:32:57 UTC (rev 43669)
@@ -13713,6 +13713,7 @@
CVE-2016-2141 (JGroups before 4.0 does not require the proper headers for the ENCRYPT ...)
- libjgroups-java <unfixed> (low)
[jessie] - libjgroups-java <no-dsa> (Minor issue)
+ [wheezy] - libjgroups-java <no-dsa> (Minor issue, only used as build dependency)
CVE-2016-2140 (The libvirt driver in OpenStack Compute (Nova) before 2015.1.4 (kilo) ...)
- nova <unfixed>
[jessie] - nova <no-dsa> (Minor issue)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-07-31 09:26:57 UTC (rev 43668)
+++ data/dla-needed.txt 2016-07-31 09:32:57 UTC (rev 43669)
@@ -29,11 +29,6 @@
--
libidn (Lucas Kanashiro)
--
-libjgroups-java
- NOTE: Maintainer suggest to ignore this package and avoid wasting of time
- "libjgroups-java is a mere build dependency and never actually used at
- runtime. Fixing it will make no difference."
---
libreoffice (Balint Reczey)
NOTE: this package needs 30GB disk space, lots of RAM and CPU power
NOTE: can reproduce in Wheezy VM
More information about the Secure-testing-commits
mailing list