[Secure-testing-commits] r55260 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Aug 30 19:37:32 UTC 2017 

Author: carnil
Date: 2017-08-30 19:37:32 +0000 (Wed, 30 Aug 2017)
New Revision: 55260

Modified:
   data/CVE/list
Log:
Mark ncurses issues as no-dsa

Asked Sven if he want's to schedule fixes via a point release. Otherwise
we can optionally as well just ignore those issues, since they are quite
minor.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-30 19:33:44 UTC (rev 55259)
+++ data/CVE/list	2017-08-30 19:37:32 UTC (rev 55260)
@@ -141,30 +141,44 @@
 	TODO: check
 CVE-2017-13734 (There is an illegal address access in the _nc_safe_strcat function in ...)
 	- ncurses <unfixed> (bug #873723)
+	[stretch] - ncurses <no-dsa> (Minor issue)
+	[jessie] - ncurses <no-dsa> (Minor issue)
 	[wheezy] - ncurses <ignored> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484291
 CVE-2017-13733 (There is an illegal address access in the fmt_entry function in ...)
 	- ncurses <unfixed> (bug #873746)
+	[stretch] - ncurses <no-dsa> (Minor issue)
+	[jessie] - ncurses <no-dsa> (Minor issue)
 	[wheezy] - ncurses <ignored> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484290
 CVE-2017-13732 (There is an illegal address access in the function dump_uses() in ...)
 	- ncurses <unfixed> (bug #873723)
+	[stretch] - ncurses <no-dsa> (Minor issue)
+	[jessie] - ncurses <no-dsa> (Minor issue)
 	[wheezy] - ncurses <ignored> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484287
 CVE-2017-13731 (There is an illegal address access in the function ...)
 	- ncurses <unfixed> (bug #873723)
+	[stretch] - ncurses <no-dsa> (Minor issue)
+	[jessie] - ncurses <no-dsa> (Minor issue)
 	[wheezy] - ncurses <ignored> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484285
 CVE-2017-13730 (There is an illegal address access in the function ...)
 	- ncurses <unfixed> (bug #873723)
+	[stretch] - ncurses <no-dsa> (Minor issue)
+	[jessie] - ncurses <no-dsa> (Minor issue)
 	[wheezy] - ncurses <ignored> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484284
 CVE-2017-13729 (There is an illegal address access in the _nc_save_str function in ...)
 	- ncurses <unfixed> (bug #873723)
+	[stretch] - ncurses <no-dsa> (Minor issue)
+	[jessie] - ncurses <no-dsa> (Minor issue)
 	[wheezy] - ncurses <ignored> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484276
 CVE-2017-13728 (There is an infinite loop in the next_char function in comp_scan.c in ...)
 	- ncurses <unfixed> (bug #873723)
+	[stretch] - ncurses <no-dsa> (Minor issue)
+	[jessie] - ncurses <no-dsa> (Minor issue)
 	[wheezy] - ncurses <ignored> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484274
 CVE-2017-13727 (There is a reachable assertion abort in the function ...)

More information about the Secure-testing-commits mailing list