[Secure-testing-commits] r45543 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Mon Oct 24 11:54:12 UTC 2016 

Author: jmm
Date: 2016-10-24 11:54:12 +0000 (Mon, 24 Oct 2016)
New Revision: 45543

Modified:
   data/CVE/list
Log:
recent xorg issues will be fixed via point release


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-10-24 11:50:05 UTC (rev 45542)
+++ data/CVE/list	2016-10-24 11:54:12 UTC (rev 45543)
@@ -2663,58 +2663,70 @@
 CVE-2016-7953
 	RESERVED
 	{DLA-671-1}
-	- libxvmc <unfixed> (bug #840445)
+	- libxvmc <unfixed> (low; bug #840445)
+	[jessie] - libxvmc <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXvMC/commit/?id=2cd95e7da8367cccdcdd5c9b160012d1dec5cbdb
 CVE-2016-7952 [for all of the other mishandling of the reply data]
 	RESERVED
-	- libxtst <unfixed> (bug #840444)
+	- libxtst <unfixed> (low; bug #840444)
+	[jessie] - libxtst <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXtst/commit/?id=9556ad67af3129ec4a7a4f4b54a0d59701beeae3
 CVE-2016-7951 [for all of the integer overflows]
 	RESERVED
-	- libxtst <unfixed> (bug #840444)
+	- libxtst <unfixed> (low; bug #840444)
+	[jessie] - libxtst <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXtst/commit/?id=9556ad67af3129ec4a7a4f4b54a0d59701beeae3
 CVE-2016-7950
 	RESERVED
 	{DLA-664-1}
-	- libxrender <unfixed> (bug #840443)
+	- libxrender <unfixed> (low; bug #840443)
+	[jessie] - libxrender <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXrender/commit/?id=8fad00b0b647ee662ce4737ca15be033b7a21714
 CVE-2016-7949
 	RESERVED
 	{DLA-664-1}
-	- libxrender <unfixed> (bug #840443)
+	- libxrender <unfixed> (low; bug #840443)
+	[jessie] - libxrender <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXrender/commit/?id=9362c7ddd1af3b168953d0737877bc52d79c94f4
 CVE-2016-7948 [for all of the other mishandling of the reply data]
 	RESERVED
 	{DLA-660-1}
-	- libxrandr <unfixed> (bug #840441)
+	- libxrandr <unfixed> (low; bug #840441)
+	[jessie] - libxrandr <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXrandr/commit/?id=a0df3e1c7728205e5c7650b2e6dce684139254a6
 CVE-2016-7947 [for all of the integer overflows]
 	RESERVED
 	{DLA-660-1}
-	- libxrandr <unfixed> (bug #840441)
+	- libxrandr <unfixed> (low; bug #840441)
+	[jessie] - libxrandr <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXrandr/commit/?id=a0df3e1c7728205e5c7650b2e6dce684139254a6
 CVE-2016-7946 [for all of the other mishandling of the reply data]
 	RESERVED
-	- libxi <unfixed> (bug #840440)
+	- libxi <unfixed> (low; bug #840440)
+	[jessie] - libxi <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXi/commit/?id=19a9cd607de73947fcfb104682f203ffe4e1f4e5
 	NOTE: Regression: https://bugs.freedesktop.org/98204
 CVE-2016-7945 [or all of the integer overflows]
 	RESERVED
-	- libxi <unfixed> (bug #840440)
+	- libxi <unfixed> (low; bug #840440)
+	[jessie] - libxi <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXi/commit/?id=19a9cd607de73947fcfb104682f203ffe4e1f4e5
 	NOTE: Regression: https://bugs.freedesktop.org/98204
 CVE-2016-7944
 	RESERVED
 	{DLA-654-1}
-	- libxfixes <unfixed> (bug #840442)
+	- libxfixes <unfixed> (low; bug #840442)
+	[jessie] - libxfixes <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXfixes/commit/?id=61c1039ee23a2d1de712843bed3480654d7ef42e
 CVE-2016-7943
 	RESERVED
-	- libx11 <unfixed> (bug #840439)
+	- libx11 <unfixed> (low; bug #840439)
+	[jessie] - libx11 <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE:  https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8c29f1607a31dac0911e45a0dd3d74173822b3c9
 CVE-2016-7942
 	RESERVED
-	- libx11 <unfixed> (bug #840439)
+	- libx11 <unfixed> (low; bug #840439)
+	[jessie] - libx11 <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8ea762f94f4c942d898fdeb590a1630c83235c17
 CVE-2016-7941
 	RESERVED
@@ -10414,7 +10426,8 @@
 CVE-2016-5407 [Insufficient validation of server responses results in out-of bounds accesses]
 	RESERVED
 	{DLA-667-1}
-	- libxv <unfixed> (bug #840438)
+	- libxv <unfixed> (low; bug #840438)
+	[jessie] - libxv <no-dsa> (Minor issue, will be fixed in a point release)
 	NOTE: https://cgit.freedesktop.org/xorg/lib/libXv/commit/?id=d9da580b46a28ab497de2e94fdc7b9ff953dab17
 CVE-2016-5406 (The domain controller in Red Hat JBoss Enterprise Application Platform ...)
 	NOT-FOR-US: JBoss EAP

More information about the Secure-testing-commits mailing list