[Secure-testing-commits] r51049 - in data: . CVE

Antoine Beaupré anarcat at moszumanska.debian.org
Wed Apr 26 00:21:44 UTC 2017


Author: anarcat
Date: 2017-04-26 00:21:44 +0000 (Wed, 26 Apr 2017)
New Revision: 51049

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
yaml-cpp: sent fix proposal upstream for review

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-25 23:13:42 UTC (rev 51048)
+++ data/CVE/list	2017-04-26 00:21:44 UTC (rev 51049)
@@ -6399,6 +6399,7 @@
 	- yaml-cpp0.3 <unfixed> (low; bug #859892)
 	[jessie] - yaml-cpp0.3 <no-dsa> (Minor issue)
 	NOTE: https://github.com/jbeder/yaml-cpp/issues/459
+	NOTE: possible fix: https://github.com/jbeder/yaml-cpp/pull/489
 CVE-2017-5949 (JavaScriptCore in WebKit, as distributed in Safari Technology Preview ...)
 	- webkitgtk <unfixed> (unimportant)
 	NOTE: Not covered by security support

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2017-04-25 23:13:42 UTC (rev 51048)
+++ data/dla-needed.txt	2017-04-26 00:21:44 UTC (rev 51049)
@@ -111,6 +111,7 @@
 xen
 --
 yaml-cpp (Antoine Beaupre)
+  NOTE: fix sent upstream, waiting for review
 --
 zoneminder
   NOTE: Sql injection and session fixation vulerability fixes:




More information about the Secure-testing-commits mailing list