[Secure-testing-commits] r55027 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Aug 24 13:02:06 UTC 2017


Author: carnil
Date: 2017-08-24 13:02:06 +0000 (Thu, 24 Aug 2017)
New Revision: 55027

Modified:
   data/CVE/list
Log:
Mark CVE-2017-12966 as unimportant

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-24 10:39:14 UTC (rev 55026)
+++ data/CVE/list	2017-08-24 13:02:06 UTC (rev 55027)
@@ -1470,9 +1470,7 @@
 	[wheezy] - binutils <ignored> (Minor issue)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=21962
 CVE-2017-12966 (The asn1f_lookup_symbol_impl function in asn1fix_retrieve.c in ...)
-	- asn1c <unfixed>
-	[stretch] - asn1c <no-dsa> (Minor issue)
-	[jessie] - asn1c <no-dsa> (Minor issue)
+	- asn1c <unfixed> (unimportant)
 CVE-2017-12965 (Session fixation vulnerability in Apache2Triad 1.5.4 allows remote ...)
 	NOT-FOR-US: Apache2Triad
 CVE-2017-12964 (There is a stack consumption issue in LibSass 3.4.5 that is triggered ...)




More information about the Secure-testing-commits mailing list