[Secure-testing-commits] r48521 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 29 13:05:10 UTC 2017
Author: carnil
Date: 2017-01-29 13:05:10 +0000 (Sun, 29 Jan 2017)
New Revision: 48521
Modified:
data/CVE/list
Log:
Mark CVE-2016-4992/389-ds-base as fixed with 1.3.5.13-1
Fixed according to the available details in 1.3.5.13 upstream at
http://directory.fedoraproject.org/docs/389ds/releases/release-1-3-5-13.html
. Not much more information found at this stage, so we have to trust
upstream that this is the fixing version :-(
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-29 12:53:17 UTC (rev 48520)
+++ data/CVE/list 2017-01-29 13:05:10 UTC (rev 48521)
@@ -29187,8 +29187,9 @@
NOT-FOR-US: JBoss Enterprise Application Platform
CVE-2016-4992 [Information disclosure via repeated use of LDAP ADD operation]
RESERVED
- - 389-ds-base <unfixed>
+ - 389-ds-base 1.3.5.13-1
[jessie] - 389-ds-base <no-dsa> (Minor issue)
+ NOTE: http://directory.fedoraproject.org/docs/389ds/releases/release-1-3-5-13.html
CVE-2016-4991
RESERVED
CVE-2016-4990
More information about the Secure-testing-commits
mailing list