[Secure-testing-commits] r47857 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Jan 9 23:11:11 UTC 2017
Author: jmm
Date: 2017-01-09 23:11:11 +0000 (Mon, 09 Jan 2017)
New Revision: 47857
Modified:
data/CVE/list
Log:
proftpd fixed
mark byzanz also as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-09 21:26:39 UTC (rev 47856)
+++ data/CVE/list 2017-01-09 23:11:11 UTC (rev 47857)
@@ -43885,13 +43885,12 @@
NOTE: http://bugs.cacti.net/view.php?id=2655
NOTE: http://seclists.org/fulldisclosure/2015/Dec/att-57/cacti_sqli%281%29.txt
CVE-2015-XXXX [Avoid unbounded SFTP extended attribute key/values]
- - proftpd-dfsg <unfixed>
+ - proftpd-dfsg 1.3.5b-1
[jessie] - proftpd-dfsg <no-dsa> (Minor issue; can be fixed in point release)
[wheezy] - proftpd-dfsg <no-dsa> (Minor issue; can be fixed in point release)
[squeeze] - proftpd-dfsg <not-affected> (Vulnerable code not present)
NOTE: http://bugs.proftpd.org/show_bug.cgi?id=4210
NOTE: https://github.com/proftpd/proftpd/pull/171
- TODO: check
CVE-2015-8376 (Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS ...)
TODO: check
CVE-2015-8373 (The kea-dhcp4 and kea-dhcp6 servers 0.9.2 and 1.0.0-beta in ISC Kea, ...)
@@ -64261,6 +64260,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/02/06/12
CVE-2015-2785 (The GIF encoder in Byzanz allows remote attackers to cause a denial of ...)
- byzanz <unfixed> (low; bug #778261)
+ [stretch] - byzanz <no-dsa> (Minor issue)
[jessie] - byzanz <no-dsa> (Minor issue)
[squeeze] - byzanz <no-dsa> (Minor issue)
[wheezy] - byzanz <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list