[Secure-testing-commits] r51221 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon May 1 09:12:07 UTC 2017
Author: carnil
Date: 2017-05-01 09:12:07 +0000 (Mon, 01 May 2017)
New Revision: 51221
Modified:
data/CVE/list
Log:
Mark CVE-2017-8109 as not-affected for jessie
Note for reviwers: please double check. AFAICT the issue was only
introduced after refactoring with upstream 73a156d. But a confirmation
from a second reviewer would be welcome.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-01 09:10:13 UTC (rev 51220)
+++ data/CVE/list 2017-05-01 09:12:07 UTC (rev 51221)
@@ -592,6 +592,7 @@
NOT-FOR-US: modified eCommerce Shopsoftware
CVE-2017-8109 (The salt-ssh minion code in SaltStack Salt before 2016.11.4 copied over ...)
- salt <unfixed> (bug #861219)
+ [jessie] - salt <not-affected> (Vulnerable code not present)
NOTE: https://github.com/saltstack/salt/issues/40075
NOTE: https://github.com/saltstack/salt/pull/40609
NOTE: https://github.com/saltstack/salt/commit/8492cef7a5c8871a3978ffc2f6e48b3b960e0151
More information about the Secure-testing-commits
mailing list