[Secure-testing-commits] r46600 - in data: . CVE DLA
Chris Lamb
lamby at moszumanska.debian.org
Sun Nov 27 10:11:20 UTC 2016
Author: lamby
Date: 2016-11-27 10:11:20 +0000 (Sun, 27 Nov 2016)
New Revision: 46600
Modified:
data/CVE/list
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-724-1 for mcabber.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-27 09:50:59 UTC (rev 46599)
+++ data/CVE/list 2016-11-27 10:11:20 UTC (rev 46600)
@@ -613,6 +613,7 @@
CVE-2016-9444
RESERVED
CVE-2016-XXXX [MCabber before 1.0.4 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza]
+ [wheezy] - mcabber 0.10.1-3+deb7u1
- mcabber <unfixed> (bug #845258)
NOTE: https://bitbucket.org/McKael/mcabber-crew/commits/6e1ead98930d7dd0a520ad17c720ae4908429033/raw
NOTE: Similar issue for mcabber as for gajim in CVE-2015-8688
Modified: data/DLA/list
===================================================================
--- data/DLA/list 2016-11-27 09:50:59 UTC (rev 46599)
+++ data/DLA/list 2016-11-27 10:11:20 UTC (rev 46600)
@@ -1,3 +1,5 @@
+[27 Nov 2016] DLA-724-1 mcabber - security update
+ [wheezy] - mcabber 0.10.1-3+deb7u1
[25 Nov 2016] DLA-723-1 libsoap-lite-perl - security update
{CVE-2015-8978}
[wheezy] - libsoap-lite-perl 0.714-1+deb7u1
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-11-27 09:50:59 UTC (rev 46599)
+++ data/dla-needed.txt 2016-11-27 10:11:20 UTC (rev 46600)
@@ -57,9 +57,6 @@
NOTE: Dariusz Dwornikowski <darek at debian.org> asked for help in
NOTE: https://lists.debian.org/CAGnkuncsq+fkzM892yqVF1QyraWZytq3HyAK17vMU0KicpivHw@mail.gmail.com
--
-mcabber (Chris Lamb)
- NOTE: Just waiting for CVE assignment. Will upload 27/11/2016 if not.
---
ming
NOTE: No upstream fix yet (2016-11-15) for any of the CVEs:
NOTE: https://github.com/libming/libming/issues/51
More information about the Secure-testing-commits
mailing list