[Secure-testing-commits] r41730 - in data: . CVE DSA
Alessandro Ghedini
ghedo at moszumanska.debian.org
Sat May 14 17:42:50 UTC 2016
Author: ghedo
Date: 2016-05-14 17:42:50 +0000 (Sat, 14 May 2016)
New Revision: 41730
Modified:
data/CVE/list
data/DSA/list
data/dsa-needed.txt
Log:
Reserve DSA for libidn
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-14 17:22:04 UTC (rev 41729)
+++ data/CVE/list 2016-05-14 17:42:50 UTC (rev 41730)
@@ -22397,6 +22397,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/08/04/2
CVE-2015-XXXX [more to CVE-2015-2059]
- libidn 1.32-1
+ [jessie] - libidn 1.29-1+deb8u1
[squeeze] - libidn 1.15-2+deb6u2
NOTE: Introduced by fix for CVE-2015-2059
NOTE: https://lists.gnu.org/archive/html/help-libidn/2015-07/msg00026.html
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2016-05-14 17:22:04 UTC (rev 41729)
+++ data/DSA/list 2016-05-14 17:42:50 UTC (rev 41730)
@@ -1,3 +1,6 @@
+[14 May 2016] DSA-3578-1 libidn - security update
+ {CVE-2015-2059}
+ [jessie] - libidn 1.29-1+deb8u1
[14 May 2016] DSA-3577-1 jansson - security update
{CVE-2016-4425}
[jessie] - jansson 2.7-1+deb8u1
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2016-05-14 17:22:04 UTC (rev 41729)
+++ data/dsa-needed.txt 2016-05-14 17:42:50 UTC (rev 41730)
@@ -29,13 +29,6 @@
--
imagemagick (luciano)
--
-libidn (ghedo)
- Working debdiff for wheezy-security at
- https://people.debian.org/~ghedo/libidn_1.25-2+deb7u1.diff
- Work-in-progress debdiff for jessie-security at
- https://people.debian.org/~ghedo/libidn_1.29-1+deb8u1.diff
- Help is needed to fix it so that it doesn't FTBFS
---
libxml2 (carnil)
NOTE: waiting for libxml2 upstream's blessed patches
--
More information about the Secure-testing-commits
mailing list