[Secure-testing-commits] r55231 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Wed Aug 30 12:34:02 UTC 2017
Author: hertzog
Date: 2017-08-30 12:34:02 +0000 (Wed, 30 Aug 2017)
New Revision: 55231
Modified:
data/CVE/list
Log:
Mark CVE affecting postgresql-8.4 as not-affected since this source only provides PL/Perl.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-30 12:22:46 UTC (rev 55230)
+++ data/CVE/list 2017-08-30 12:34:02 UTC (rev 55231)
@@ -17557,6 +17557,7 @@
[jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl)
[wheezy] - postgresql-9.1 <not-affected> (Vulnerable code not present)
- postgresql-8.4 <removed>
+ [wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
NOTE: https://www.postgresql.org/about/news/1772/
CVE-2017-7547 (PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are ...)
{DSA-3936-1 DSA-3935-1 DLA-1051-1}
@@ -17565,6 +17566,7 @@
- postgresql-9.1 <removed>
[jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl)
- postgresql-8.4 <removed>
+ [wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
NOTE: https://www.postgresql.org/about/news/1772/
CVE-2017-7546 (PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are ...)
{DSA-3936-1 DSA-3935-1 DLA-1051-1}
@@ -17573,6 +17575,7 @@
- postgresql-9.1 <removed>
[jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl)
- postgresql-8.4 <removed>
+ [wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
NOTE: https://www.postgresql.org/about/news/1772/
CVE-2017-7545
RESERVED
@@ -79103,7 +79106,7 @@
- postgresql-9.1 <removed>
[jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl)
- postgresql-8.4 <removed>
- [wheezy] - postgresql-8.4 <no-dsa> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
+ [wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
[squeeze] - postgresql-8.4 <no-dsa> (minor issue)
CVE-2015-5287 (The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before ...)
NOT-FOR-US: abrt is Red Hat / Fedora specific
@@ -85312,21 +85315,21 @@
- postgresql-9.1 <removed>
NOTE: Since 9.1.1-2 src:postgresql-9.1 builds only postgresql-plperl-9.1, source-wise fixed
- postgresql-8.4 <removed>
- [wheezy] - postgresql-8.4 <no-dsa> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
+ [wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
CVE-2015-3166
RESERVED
{DSA-3270-1 DSA-3269-1 DLA-227-1}
- postgresql-9.4 9.4.2-1
- postgresql-9.1 <removed>
- postgresql-8.4 <removed>
- [wheezy] - postgresql-8.4 <no-dsa> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
+ [wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
CVE-2015-3165 (Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before ...)
{DSA-3270-1 DSA-3269-1 DLA-227-1}
- postgresql-9.4 9.4.2-1
- postgresql-9.1 <removed>
NOTE: Since 9.1.1-2 src:postgresql-9.1 builds only postgresql-plperl-9.1, source-wise fixed
- postgresql-8.4 <removed>
- [wheezy] - postgresql-8.4 <no-dsa> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
+ [wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
CVE-2015-3164 (The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 ...)
- xorg-server 2:1.17.2-1 (bug #788410)
[jessie] - xorg-server <no-dsa> (Minor issue, can be fixed along in a future DSA)
More information about the Secure-testing-commits
mailing list