[Secure-testing-commits] r41993 - in data: . CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue May 24 14:21:54 UTC 2016
Author: carnil
Date: 2016-05-24 14:21:54 +0000 (Tue, 24 May 2016)
New Revision: 41993
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
Move symfony to dsa-needed list
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-24 14:16:08 UTC (rev 41992)
+++ data/CVE/list 2016-05-24 14:21:54 UTC (rev 41993)
@@ -9070,7 +9070,6 @@
CVE-2016-1902 [SecureRandom's fallback not secure when OpenSSL fails]
RESERVED
- symfony 2.7.9+dfsg-1
- [jessie] - symfony <no-dsa> (Minor issue)
NOTE: http://symfony.com/blog/cve-2016-1902-securerandom-s-fallback-not-secure-when-openssl-fails
NOTE: https://github.com/symfony/symfony/pull/17359
CVE-2016-1906 (The API server in Kubernetes might allow remote attackers to gain ...)
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2016-05-24 14:16:08 UTC (rev 41992)
+++ data/dsa-needed.txt 2016-05-24 14:21:54 UTC (rev 41993)
@@ -65,5 +65,7 @@
squid3
Santiago proposed a debdiff.
--
+symfony
+--
tomcat8 (Markus Koschany)
--
More information about the Secure-testing-commits
mailing list