[Secure-testing-commits] r48854 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun Feb 12 16:38:30 UTC 2017
Author: apo
Date: 2017-02-12 16:38:30 +0000 (Sun, 12 Feb 2017)
New Revision: 48854
Modified:
data/CVE/list
Log:
openpyxl,#854442: Mark Wheezy as not-affected
Support for lxml was first introduced in version 1.8
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-12 09:10:14 UTC (rev 48853)
+++ data/CVE/list 2017-02-12 16:38:30 UTC (rev 48854)
@@ -263,6 +263,7 @@
NOTE: https://github.com/viewvc/viewvc/commit/9dcfc7daa4c940992920d3b2fbd317da20e44aad
CVE-2017-XXXX [openpyxl XML External Entity (XXE) vulnerability]
- openpyxl <unfixed> (bug #854442)
+ [wheezy] - openpyxl <not-affected> (vulnerable code not present)
NOTE: CVE request at http://www.openwall.com/lists/oss-security/2017/02/07/5
NOTE: https://bitbucket.org/openpyxl/openpyxl/commits/3b4905f428e1
CVE-2017-XXXX [gnome-keyring lives on after ssh session stops]
More information about the Secure-testing-commits
mailing list