[Secure-testing-commits] r50587 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 12 04:17:22 UTC 2017
Author: carnil
Date: 2017-04-12 04:17:21 +0000 (Wed, 12 Apr 2017)
New Revision: 50587
Modified:
data/CVE/list
Log:
Cleanup REJECTED CVE entries
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-11 21:23:26 UTC (rev 50586)
+++ data/CVE/list 2017-04-12 04:17:21 UTC (rev 50587)
@@ -7472,16 +7472,10 @@
CVE-2017-5200 [salt-api command execution]
RESERVED
- salt 2016.11.2+ds-1
-CVE-2017-5339 [http: correct the expected error for RC4]
+CVE-2017-5339
REJECTED
- - libgit2 <unfixed> (unimportant; bug #851406)
- NOTE: https://github.com/libgit2/libgit2/commit/3829ba2e710553893faf6336cc6b2f3fc17a293e (v0.25.1)
- NOTE: https://github.com/libgit2/libgit2/commit/d3cb8f64cde3b84c3d1543f122f989aeb2f6a69e (v0.24.1)
-CVE-2017-5338 [http: perform 'badssl' check also via certificate callback]
+CVE-2017-5338
REJECTED
- - libgit2 <unfixed> (unimportant; bug #851406)
- NOTE: https://github.com/libgit2/libgit2/commit/98d66240ecb7765e191da19b535c75c92ccc90fe (v0.25.1)
- NOTE: https://github.com/libgit2/libgit2/commit/ca531956619f021913ac01669b3818a705b7b676 (v0.24.6)
CVE-2016-10130 (The http_connect function in transports/http.c in libgit2 before ...)
- libgit2 <unfixed> (bug #851406)
[jessie] - libgit2 <not-affected> (Vulnerable code not present)
@@ -49704,7 +49698,6 @@
REJECTED
CVE-2015-8581
REJECTED
- NOT-FOR-US: Apache TomEE
CVE-2015-8580 (Multiple use-after-free vulnerabilities in the (1) Print method and ...)
NOT-FOR-US: Foxit
CVE-2015-8579 (Kaspersky Total Security 2015 15.0.2.361 allocates memory with Read, ...)
More information about the Secure-testing-commits
mailing list