[Secure-testing-commits] r46088 - in data: . CVE
Balint Reczey
rbalint at moszumanska.debian.org
Wed Nov 9 17:12:15 UTC 2016
Author: rbalint
Date: 2016-11-09 17:12:15 +0000 (Wed, 09 Nov 2016)
New Revision: 46088
Modified:
data/CVE/list
data/dla-needed.txt
Log:
kdesu(do) CVE-2016-7787 does not affect wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-09 17:12:06 UTC (rev 46087)
+++ data/CVE/list 2016-11-09 17:12:15 UTC (rev 46088)
@@ -4619,7 +4619,9 @@
RESERVED
- kde-cli-tools 4:5.8.0-1 (bug #839865)
- kde-runtime <unfixed> (bug #842498)
+ [wheezy] - kde-runtime <not-affected> (Unicode string terminator is not interpreted)
- kdesudo <unfixed> (bug #843790)
+ [wheezy] - kdesudo <not-affected> (Unicode string terminator is not interpreted)
NOTE: https://www.kde.org/info/security/advisory-20160930-1.txt
NOTE: https://github.com/KDE/kde-cli-tools/commit/5eda179a099ba68a20dc21dc0da63e85a565a171
NOTE: For kde-cli-tools fixed in 5.7.5 upstream
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-11-09 17:12:06 UTC (rev 46087)
+++ data/dla-needed.txt 2016-11-09 17:12:15 UTC (rev 46088)
@@ -35,9 +35,6 @@
--
jasper (Thorsten Alteholz)
--
-kde-runtime (Balint Reczey)
- NOTE: We may not need to update, but I'm leaning toward fixing CVE-2016-7787, see #839865
---
libass
NOTE: 20161019: CVE-2016-7971 is disputed upstream. No patch available yet.
NOTE: 20161026: CVE-2016-7971 is not only disputed upstream but the reporter also confirm that the
More information about the Secure-testing-commits
mailing list