[Secure-testing-commits] r47837 - in data: . CVE
Ola Lundqvist
opal at moszumanska.debian.org
Sun Jan 8 22:24:56 UTC 2017
Author: opal
Date: 2017-01-08 22:24:56 +0000 (Sun, 08 Jan 2017)
New Revision: 47837
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Mark CVE-2016-8649 no-dsa just as for jessie.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-08 22:13:07 UTC (rev 47836)
+++ data/CVE/list 2017-01-08 22:24:56 UTC (rev 47837)
@@ -14828,6 +14828,7 @@
RESERVED
- lxc 1:2.0.6-1 (bug #845465)
[jessie] - lxc <no-dsa> (Minor issue)
+ [wheezy] - lxc <no-dsa> (Minor issue)
NOTE: Fixed by: https://github.com/lxc/lxc/commit/81f466d05f2a89cb4f122ef7f593ff3f279b165c
NOTE: Details: https://launchpad.net/bugs/1639345
NOTE: To be complete this needs as well changes to src:linux
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-01-08 22:13:07 UTC (rev 47836)
+++ data/dla-needed.txt 2017-01-08 22:24:56 UTC (rev 47837)
@@ -67,13 +67,7 @@
libxml2
--
linux
- NOTE: if CVE-2016-8649 (lxc issue) is to be fixed in wheezy, it
- NOTE: needs changes in linux as well.
--
-lxc
- NOTE: A privilege escalation of this should be seen as a problem.
- NOTE: this was marked no-dsa in jessie, and requires changes to linux
---
ming (Balint Reczey)
NOTE: No upstream fix yet (2016-11-15) for any of the CVEs:
NOTE: https://github.com/libming/libming/issues/51
More information about the Secure-testing-commits
mailing list