[Secure-testing-commits] r50493 - in data: . CVE

Ola Lundqvist opal at moszumanska.debian.org
Sun Apr 9 19:46:53 UTC 2017


Author: opal
Date: 2017-04-09 19:46:53 +0000 (Sun, 09 Apr 2017)
New Revision: 50493

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
Claim libsndfile and marked CVE for proftpd-dfsg as no-dsa following jessie.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-09 19:16:24 UTC (rev 50492)
+++ data/CVE/list	2017-04-09 19:46:53 UTC (rev 50493)
@@ -395,6 +395,7 @@
 CVE-2017-7418 (ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the ...)
 	- proftpd-dfsg 1.3.5b-4 (low; bug #859592)
 	[jessie] - proftpd-dfsg <no-dsa> (Minor issue)
+	[wheezy] - proftpd-dfsg <no-dsa> (Minor issue)
 	NOTE: http://bugs.proftpd.org/show_bug.cgi?id=4295
 	NOTE: https://github.com/proftpd/proftpd/commit/ecff21e0d0e84f35c299ef91d7fda088e516d4ed
 	NOTE: https://github.com/proftpd/proftpd/commit/f59593e6ff730b832dbe8754916cb5c821db579f

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2017-04-09 19:16:24 UTC (rev 50492)
+++ data/dla-needed.txt	2017-04-09 19:46:53 UTC (rev 50493)
@@ -52,7 +52,7 @@
 libreoffice (Emilio Pozuelo)
   NOTE: Rene (maintainer) is working on the patch since the proposed one seems to be incomplete
 --
-libsndfile
+libsndfile (Ola Lundqvist)
 --
 libvpx (Emilio Pozuelo)
   NOTE: The CVEs needs further triaging.
@@ -97,8 +97,6 @@
   NOTE: Upstream is not going to fix CVE-2016-8686 since it believes it is not
   NOTE: a bug (see #843861).
 --
-proftpd-dfsg
---
 putty (Jonas Meurer)
 --
 qbittorrent (Thorsten Alteholz)




More information about the Secure-testing-commits mailing list