[Secure-testing-commits] r45541 - data
Stephen Kitt
skitt at moszumanska.debian.org
Mon Oct 24 09:24:50 UTC 2016
Author: skitt
Date: 2016-10-24 09:24:50 +0000 (Mon, 24 Oct 2016)
New Revision: 45541
Modified:
data/dla-needed.txt
Log:
Give up on CVE-2016-4973 for now, it's not progressing upstream
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-10-24 09:10:20 UTC (rev 45540)
+++ data/dla-needed.txt 2016-10-24 09:24:50 UTC (rev 45541)
@@ -16,7 +16,10 @@
dwarfutils
NOTE: New round of CVEs not seemingly covered by DLA 669-1.
--
-gcc-mingw-w64 (Stephen Kitt)
+gcc-mingw-w64
+ NOTE: CVE-2016-4973 isn't gaining any traction, upstream doesn't
+ agree that it's a security issue, and the proposed fix doesn't work
+ (and no progress is being made on it AFAICT).
--
ghostscript (Roberto C. Sánchez)
--
@@ -57,7 +60,7 @@
--
linux
--
-mingw32 (Stephen Kitt)
+mingw32
--
nspr (Ola Lundqvist)
NOTE: No need to contact maintainer, Mike already opted out with firefox-esr
More information about the Secure-testing-commits
mailing list