[Secure-testing-commits] r47772 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 6 05:34:44 UTC 2017
Author: carnil
Date: 2017-01-06 05:34:43 +0000 (Fri, 06 Jan 2017)
New Revision: 47772
Modified:
data/CVE/list
Log:
Update status for mock
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-06 01:04:11 UTC (rev 47771)
+++ data/CVE/list 2017-01-06 05:34:43 UTC (rev 47772)
@@ -22345,9 +22345,10 @@
REJECTED
CVE-2016-6299 [privilige escalation via mock-scm]
RESERVED
- - mock <unfixed> (bug #850320)
+ - mock 1.3.2-1 (bug #850320)
+ [jessie] - mock <not-affected> (Parsing is done before, after temporarily dropping super-user privileges at startup)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1375490
- NOTE: https://github.com/rpm-software-management/mock/commit/8b02f43beadacf6911200b48d94e39e891a41da9
+ NOTE: https://github.com/rpm-software-management/mock/commit/8b02f43beadacf6911200b48d94e39e891a41da9 (mock-1.2.21)
CVE-2016-6298 (The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in ...)
- python-jwcrypto 0.3.2-1
NOTE: https://github.com/latchset/jwcrypto/issues/65
More information about the Secure-testing-commits
mailing list