[Secure-testing-commits] r48133 - data/CVE

Tue Jan 17 18:09:06 UTC 2017

Author: carnil
Date: 2017-01-17 18:09:06 +0000 (Tue, 17 Jan 2017)
New Revision: 48133

Modified:
   data/CVE/list
Log:
Track experimental version for bind9 upload fixing some CVEs

Mike is working on an upload targetted for unstable without library
transition needed.

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-01-17 16:26:02 UTC (rev 48132)
+++ data/CVE/list	2017-01-17 18:09:06 UTC (rev 48133)
@@ -12618,6 +12618,7 @@
 	RESERVED
 CVE-2016-9444 (named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and ...)
 	{DSA-3758-1}
+	[experimental] - bind9 1:9.10.4-P5-1
 	- bind9 <unfixed> (bug #851062)
 	NOTE: https://kb.isc.org/article/AA-01441/0
 CVE-2016-9928 [MCabber before 1.0.4 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza]
@@ -13791,6 +13792,7 @@
 	RESERVED
 CVE-2016-9147 (named in ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 allows ...)
 	{DSA-3758-1}
+	[experimental] - bind9 1:9.10.4-P5-1
 	- bind9 <unfixed> (bug #851063)
 	NOTE: https://kb.isc.org/article/AA-01440/0
 CVE-2015-8969 (git-fastclone before 1.0.5 passes user modifiable strings directly to a ...)
@@ -13883,6 +13885,7 @@
 	NOTE: Not believed to be exploitable in practice
 CVE-2016-9131 (named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and ...)
 	{DSA-3758-1}
+	[experimental] - bind9 1:9.10.4-P5-1
 	- bind9 <unfixed> (bug #851065)
 	NOTE: https://kb.isc.org/article/AA-01439/0
 CVE-2016-9130
@@ -14588,6 +14591,7 @@
 	RESERVED
 CVE-2016-8864 (named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and ...)
 	{DSA-3703-1 DLA-696-1}
+	[experimental] - bind9 1:9.10.4-P5-1
 	- bind9 <unfixed> (bug #842858)
 	NOTE: https://kb.isc.org/article/AA-01434
 	NOTE: upstream fix https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=commitdiff;h=8bd0c12d53bea6f299e92d20ee0a23b16a7f65bc
@@ -23846,6 +23850,7 @@
 	NOTE: https://gitlab.labs.nic.cz/labs/knot/merge_requests/541
 	NOTE: https://gitlab.labs.nic.cz/labs/knot/issues/464
 CVE-2016-6170 (ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x ...)
+	[experimental] - bind9 1:9.10.4-P5-1
 	- bind9 <unfixed> (bug #830810)
 	[jessie] - bind9 <no-dsa> (Minor issue)
 	[wheezy] - bind9 <no-dsa> (Minor issue)
@@ -34675,10 +34680,12 @@
 	REJECTED
 CVE-2016-2776 (buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before ...)
 	{DSA-3680-1 DLA-645-1}
+	[experimental] - bind9 1:9.10.4-P5-1
 	- bind9 <unfixed> (bug #839010)
 	NOTE: https://kb.isc.org/article/AA-01419
 CVE-2016-2775 (ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x ...)
 	{DSA-3680-1 DLA-645-1}
+	[experimental] - bind9 1:9.10.4-P5-1
 	- bind9 <unfixed> (bug #831796)
 	NOTE: https://kb.isc.org/article/AA-01393/74/CVE-2016-2775
 CVE-2016-2774 (ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 ...)


