[Secure-testing-commits] r42115 - in data: . CVE

Thorsten Alteholz alteholz at moszumanska.debian.org
Sun May 29 12:36:44 UTC 2016


Author: alteholz
Date: 2016-05-29 12:36:43 +0000 (Sun, 29 May 2016)
New Revision: 42115

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
mark CVE-2016-2568 for policykit-1 as <no-dsa> in Wheezy like in Jessie

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-05-29 11:49:17 UTC (rev 42114)
+++ data/CVE/list	2016-05-29 12:36:43 UTC (rev 42115)
@@ -6900,6 +6900,7 @@
 	RESERVED
 	- policykit-1 <unfixed> (bug #816062)
 	[jessie] - policykit-1 <no-dsa> (Minor issue)
+	[wheezy] - policykit-1 <no-dsa> (Minor issue)
 	NOTE: Restricting ioctl on the kernel side seems the better approach
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1300746
 CVE-2016-2558 (The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU ...)

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2016-05-29 11:49:17 UTC (rev 42114)
+++ data/dla-needed.txt	2016-05-29 12:36:43 UTC (rev 42115)
@@ -74,9 +74,6 @@
 --
 php5 (Thorsten Alteholz)
 --
-policykit-1
-  NOTE: CVE-2016-2568 doesn't have a fix yet, 20160425
---
 quagga
   NOTE: see dsa-needed's notes.
   NOTE: Maintainer's answer: https://lists.debian.org/msgid-search/878tzv6pru.fsf@mid.deneb.enyo.de




More information about the Secure-testing-commits mailing list