[Secure-testing-commits] r54266 - data/CVE

Sebastien Delafond seb at moszumanska.debian.org
Fri Aug 4 15:01:35 UTC 2017 

Author: seb
Date: 2017-08-04 15:01:35 +0000 (Fri, 04 Aug 2017)
New Revision: 54266

Modified:
   data/CVE/list
Log:
Fix most duplicate annotations in CVE/list

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-04 14:42:20 UTC (rev 54265)
+++ data/CVE/list	2017-08-04 15:01:35 UTC (rev 54266)
@@ -74750,7 +74750,6 @@
 CVE-2015-5313 (Directory traversal vulnerability in the ...)
 	- libvirt 1.3.0-1 (bug #808273)
 	[jessie] - libvirt 1.2.9-9+deb8u2
-	[jessie] - libvirt <no-dsa> (Minor issue)
 	[wheezy] - libvirt <not-affected> (Vulnerable code introduced later)
 	[squeeze] - libvirt <not-affected> (Vulnerable code introduced later)
 	NOTE: Fixed by: https://libvirt.org/git/?p=libvirt.git;a=commit;h=034e47c338b13a95cf02106a3af912c1c5f818d7
@@ -83663,7 +83662,6 @@
 CVE-2015-XXXX [nasal scripts can ready any file]
 	- flightgear-data 3.0.0-3 (bug #780716)
 CVE-2015-XXXX [permissive file access allowed from nasal]
-	- flightgear 1.9.1-1.1
 	[squeeze] - flightgear 1.9.1-1.1+deb6u11
 	NOTE: workaround entry for DLA 318-1 until/if CVE assigned
 	- flightgear 3.0.0-5 (bug #780712)
@@ -106734,7 +106732,6 @@
 	NOT-FOR-US: JBoss Application Server
 CVE-2014-3517 (api/metadata/handler.py in OpenStack Compute (Nova) before 2013.2.4, ...)
 	- nova 2014.1.1-8 (bug #755042)
-	[wheezy] - nova <no-dsa> (Minor issue)
 	[wheezy] - nova <not-affected> (Only exploitable when used with neutron, which is not in stable)
 CVE-2014-3516
 	RESERVED
@@ -117812,7 +117809,7 @@
 	- icedove 24.2.0-1
 	- iceape <removed>
 	[squeeze] - iceweasel <end-of-life>
-	[wheezy] - iceape <end-of-life>
+	[wheezy] - icedove <end-of-life>
 	[squeeze] - icedove <end-of-life>
 	[squeeze] - iceape <end-of-life>
 	[wheezy] - iceape <end-of-life>
@@ -129079,7 +129076,6 @@
 	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2013-2415 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	- openjdk-6 <not-affected> (Only affects Java 7)
-	- openjdk-6 6b27-1.12.5-1
 CVE-2013-2414 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	- openjdk-6 <not-affected> (JavaFX not part of OpenJDK)
 	- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
@@ -141629,7 +141625,6 @@
 	- linux-2.6 <removed>
 CVE-2012-4507 (The strchr function in procmime.c in Claws Mail (aka claws-mail) 3.8.1 ...)
 	- claws-mail 3.8.1-2 (low; bug #690151)
-	[squeeze] - claws-mail <no-dsa> (Minor issue)
 	[squeeze] - claws-mail 3.7.6-4+squeeze1
 	NOTE: http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=2743
 	NOTE: www.thewildbeast.co.uk/claws-mail/bugzilla/attachment.cgi?id=1165
@@ -156651,7 +156646,6 @@
 	- webkit <not-affected> (Chrome pdf plugin)
 CVE-2011-3914 (The internationalization (aka i18n) functionality in Google V8, as ...)
 	- chromium-browser 16.0.912.63~r113337-1
-	[squeeze] - chromium-browser <end-of-life>
 	- webkit <not-affected> (v8-i18n chrome issue)
 	[squeeze] - chromium-browser <not-affected>
 CVE-2011-3913 (Use-after-free vulnerability in Google Chrome before 16.0.912.63 ...)
@@ -165720,7 +165714,6 @@
 	[lenny] - sun-java6 6.26-0lenny1
 	[squeeze] - sun-java6 6.26-0squeeze1
 	- sun-java6 6.26-1 (bug #629852)
-	- sun-java6 6.26-1 (bug #629852)
 	- openjdk-6 6b18-1.8.9-0.1 (bug #629852)
 CVE-2011-0864 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	{DSA-2358-1 DSA-2311-1}
@@ -171214,7 +171207,6 @@
 CVE-2010-3492 (The asyncore module in Python before 3.2 does not properly handle ...)
 	- python2.7 2.7.8-11 (unimportant)
 	- python3.1 <removed> (unimportant)
-	- python3.2 <removed> (unimportant)
 	- python3.2 3.4.2-1 (unimportant)
 	NOTE: likely fixed much earlier, but these were the versions checked
 CVE-2010-3491 (The (1) ActiveMatrix Runtime and (2) ActiveMatrix Administrator ...)
@@ -180635,7 +180627,6 @@
 CVE-2010-1104 (Cross-site scripting (XSS) vulnerability in Zope 2.8.x before 2.8.12, ...)
 	- zope2.10 <removed> (low)
 	- zope3 <removed> (low)
-	- zope2.10 <removed> (low)
 	[lenny] - zope2.10 <no-dsa> (Minor issue)
 	[lenny] - zope3 <no-dsa> (Minor issue)
 	- zope2.11 <removed>
@@ -183555,7 +183546,6 @@
 	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1
 	[lenny] - sun-java6 6-20-0lenny1
-	[lenny] - sun-java6 <no-dsa> (Non-free not supported)
 CVE-2009-3881 (Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, ...)
 	- openjdk-6 6b17~pre3-1 (medium; bug #560908)
 	- sun-java6 6-17-1

More information about the Secure-testing-commits mailing list