[Secure-testing-commits] r42062 - in data: . CVE
Ola Lundqvist
opal at moszumanska.debian.org
Thu May 26 19:15:43 UTC 2016
Author: opal
Date: 2016-05-26 19:15:43 +0000 (Thu, 26 May 2016)
New Revision: 42062
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Analyzed the code and I can not see that the vulnerability is there in wheezy.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-26 18:32:48 UTC (rev 42061)
+++ data/CVE/list 2016-05-26 19:15:43 UTC (rev 42062)
@@ -10574,6 +10574,7 @@
NOTE: Introduced in 1.4.36: http://web.archive.org/web/20150906061055/http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2976
CVE-2016-1503 (dhcpcd before 6.10.0, as used in Android 4.x before 4.4.4, 5.0.x ...)
- dhcpcd5 6.10.1-1 (bug #810621)
+ [wheezy] - dhcpcd5 <not-affected> (Vulnerable code not present)
- dhcpcd <not-affected> (Vulnerable code not present)
NOTE: http://roy.marples.name/projects/dhcpcd/info/76a1609352263bd9def1300d7ba990679571fa30
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/07/3
@@ -10581,6 +10582,7 @@
CVE-2016-1504 [invalid read/crash via malformed dhcp responses]
RESERVED
- dhcpcd5 6.10.1-1 (bug #810620)
+ [wheezy] - dhcpcd5 <not-affected> (Vulnerable code not present)
- dhcpcd <not-affected> (Vulnerable code not present)
[squeeze] - dhcpcd <not-affected> (Vulnerable code not present)
NOTE: http://roy.marples.name/projects/dhcpcd/info/595883e2a431f65d8fabf33059aa4689cca17403
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-05-26 18:32:48 UTC (rev 42061)
+++ data/dla-needed.txt 2016-05-26 19:15:43 UTC (rev 42062)
@@ -18,8 +18,6 @@
cakephp
NOTE: CVE-2015-8379 No official solution is currently available, 20160425
--
-dhcpcd5
---
eglibc (Santiago R.R.)
--
gosa (Mike Gabriel)
More information about the Secure-testing-commits
mailing list