[Secure-testing-commits] r52766 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jun 21 08:43:45 UTC 2017
Author: carnil
Date: 2017-06-21 08:43:45 +0000 (Wed, 21 Jun 2017)
New Revision: 52766
Modified:
data/CVE/list
Log:
Recheck thrift situation, there is at least hrift-compiler as well
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-21 06:49:06 UTC (rev 52765)
+++ data/CVE/list 2017-06-21 08:43:45 UTC (rev 52766)
@@ -73425,6 +73425,7 @@
[squeeze] - policykit-1 <no-dsa> (Minor issue)
NOTE: http://cgit.freedesktop.org/polkit/commit/?id=9f5e0c731784003bd4d6fc75ab739ff8b2ea269f
CVE-2015-3254 (The client libraries in Apache Thrift before 0.9.3 might allow remote ...)
+ - thrift-compiler <unfixed>
NOTE: Affects src:thrift, which is only in experimental. The issue is fixed upstream in 0.9.3
NOTE: so any future upload of thrift to unstable can mark this item as <not-affected> (fixed
NOTE: before the initial upload to Debian unstable)
More information about the Secure-testing-commits
mailing list