[Secure-testing-commits] r45550 - in data: . CVE

Mon Oct 24 18:04:51 UTC 2016

Author: jmm
Date: 2016-10-24 18:04:51 +0000 (Mon, 24 Oct 2016)
New Revision: 45550

Modified:
   data/CVE/list
   data/dsa-needed.txt
Log:
drop some no-dsa for asterisk, which will be fixed along in future DSA


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2016-10-24 15:29:05 UTC (rev 45549)
+++ data/CVE/list	2016-10-24 18:04:51 UTC (rev 45550)
@@ -16134,7 +16134,7 @@
 	REJECTED
 CVE-2016-3718 (The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x ...)
 	{DSA-3580-1 DLA-486-1 DLA-484-1}
-	- imagemagick <unfixed>
+	- imagemagick 
 	- graphicsmagick 1.3.24-1
 	NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3717 (The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 ...)
@@ -20868,7 +20868,6 @@
 	NOTE: https://github.com/python-pillow/Pillow/issues/1737
 CVE-2016-2232 (Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before ...)
 	- asterisk 1:13.7.2~dfsg-1
-	[jessie] - asterisk <no-dsa> (Minor issue)
 	[wheezy] - asterisk <no-dsa> (Minor issue)
 	[squeeze] - asterisk <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: http://downloads.asterisk.org/pub/security/AST-2016-003.html
@@ -20878,7 +20877,6 @@
 	NOTE: all versions vulnerable, backport required for wheezy
 CVE-2016-2316 (chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and ...)
 	- asterisk 1:13.7.2~dfsg-1
-	[jessie] - asterisk <no-dsa> (Minor issue)
 	[wheezy] - asterisk <no-dsa> (Minor issue)
 	[squeeze] - asterisk <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: http://downloads.asterisk.org/pub/security/AST-2016-002.html
@@ -44271,7 +44269,6 @@
 CVE-2015-3008 (Asterisk Open Source 1.8 before 1.8.32.3, 11.x before 11.17.1, 12.x ...)
 	{DLA-455-1}
 	- asterisk 1:13.7.2~dfsg-1 (bug #782411)
-	[jessie] - asterisk <no-dsa> (Minor issue, can be fixed along in a future DSA)
 	[squeeze] - asterisk <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: http://downloads.asterisk.org/pub/security/AST-2015-003.html
 	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24847

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2016-10-24 15:29:05 UTC (rev 45549)
+++ data/dsa-needed.txt	2016-10-24 18:04:51 UTC (rev 45550)
@@ -14,7 +14,7 @@
 --
 389-ds-base (fw)
 --
-asterisk
+asterisk (jmm)
 --
 chromium-browser
 --


