[Secure-testing-commits] r48240 - in data: . CVE
Ola Lundqvist
opal at moszumanska.debian.org
Fri Jan 20 21:50:34 UTC 2017
Author: opal
Date: 2017-01-20 21:50:34 +0000 (Fri, 20 Jan 2017)
New Revision: 48240
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Mark as no-dsa just as in jessie.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-20 21:46:27 UTC (rev 48239)
+++ data/CVE/list 2017-01-20 21:50:34 UTC (rev 48240)
@@ -4276,6 +4276,7 @@
RESERVED
- chicken <unfixed> (low; bug #851278)
[jessie] - chicken <no-dsa> (Minor issue)
+ [wheezy] - chicken <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2016/12/14/18
NOTE: https://github.com/ashinn/irregex/commit/a16ffc86eca15fca9e40607d41de3cea9cf868f1
NOTE: For chicken vulnerable code in ./irregex-core.scm
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-01-20 21:46:27 UTC (rev 48239)
+++ data/dla-needed.txt 2017-01-20 21:50:34 UTC (rev 48240)
@@ -15,9 +15,6 @@
--
bind9 (Thorsten Alteholz)
--
-chicken
- NOTE: I would set this as <no-dsa> like in Jessie, but please recheck
---
graphicsmagick (Antoine Beaupré)
NOTE: seems only a single memory/CPU DOS at this point, maybe wait for more issues?
NOTE: DLA-547-1 also did not fix CVE-2016-5240 so should be included in next upload.
More information about the Secure-testing-commits
mailing list