[Secure-testing-commits] r50385 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2017-04-05 20:48:23 +0000 (Wed, 05 Apr 2017)
New Revision: 50385

Modified:
   data/CVE/list
Log:
apt-cacher CVEfied


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-05 18:53:58 UTC (rev 50384)
+++ data/CVE/list	2017-04-05 20:48:23 UTC (rev 50385)
@@ -621,14 +621,6 @@
 	NOTE: This CVE is for an incomplete fix of CVE-2016-8698
 CVE-2016-10273 (Multiple stack buffer overflow vulnerabilities in Jensen of Scandinavia ...)
 	NOT-FOR-US: Jensen of Scandinavia Air:Link Routers
-CVE-2017-XXXX [apt-cacher http response splitting]
-	- apt-cacher-ng 3-1 (bug #858833)
-	[jessie] - apt-cacher-ng <no-dsa> (Minor issue)
-	[wheezy] - apt-cacher-ng <no-dsa> (Minor issue)
-	- apt-cacher 1.7.15 (bug #858739)
-	[jessie] - apt-cacher <no-dsa> (Minor issue)
-	[wheezy] - apt-cacher 1.7.6+deb7u1
-	NOTE: Workaround entry for DLA-873-1 since no CVE assigned
 CVE-2017-7262 (The AMD Ryzen processor with AGESA microcode through 2017-01-27 allows ...)
 	NOT-FOR-US: Hardware bug in AMD Ryzen CPUs, cannot be fixed via micro code updates, but only BIOS updates
 CVE-2017-7261 (The vmw_surface_define_ioctl function in ...)
@@ -26088,8 +26080,15 @@
 	NOTE: https://github.com/uclouvain/openjpeg/issues/843
 	NOTE: PoC: https://github.com/STARLABSEC/pocs/raw/master/openjpeg-nullptr-github-issue-842.ppm
 	NOTE: No code injection, function only exposed in the CLI tool
-CVE-2016-7443
+CVE-2016-7443 [apt-cacher http response splitting]
 	RESERVED
+	- apt-cacher-ng 3-1 (bug #858833)
+	[jessie] - apt-cacher-ng <no-dsa> (Minor issue)
+	[wheezy] - apt-cacher-ng <no-dsa> (Minor issue)
+	- apt-cacher 1.7.15 (bug #858739)
+	[jessie] - apt-cacher <no-dsa> (Minor issue)
+	[wheezy] - apt-cacher 1.7.6+deb7u1
+	NOTE: Workaround entry for DLA-873-1 since no CVE assigned
 CVE-2016-7442 (The Frontend component in Sophos UTM with firmware 9.405-5 and earlier ...)
 	NOT-FOR-US: Sophos UTM
 CVE-2016-7441