[Secure-testing-commits] r51361 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat May 6 09:53:55 UTC 2017 

Author: carnil
Date: 2017-05-06 09:53:55 +0000 (Sat, 06 May 2017)
New Revision: 51361

Modified:
   data/CVE/list
Log:
Drop cgiemail and owncloud entries, removed in point release

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-06 09:17:06 UTC (rev 51360)
+++ data/CVE/list	2017-05-06 09:53:55 UTC (rev 51361)
@@ -8204,13 +8204,10 @@
 	RESERVED
 CVE-2017-5867 (ownCloud Server before 8.1.11, 8.2.x before 8.2.9, 9.0.x before 9.0.7, ...)
 	- owncloud <removed>
-	[jessie] - owncloud <no-dsa> (Will be removed in point release)
 CVE-2017-5866 (The autocomplete feature in the E-Mail share dialog in ownCloud Server ...)
 	- owncloud <removed>
-	[jessie] - owncloud <no-dsa> (Will be removed in point release)
 CVE-2017-5865 (The password reset functionality in ownCloud Server before 8.1.11, ...)
 	- owncloud <removed>
-	[jessie] - owncloud <no-dsa> (Will be removed in point release)
 CVE-2017-5864
 	RESERVED
 CVE-2017-5863
@@ -9381,22 +9378,18 @@
 CVE-2017-5616 (Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho ...)
 	{DLA-869-1}
 	- cgiemail <removed> (bug #852031)
-	[jessie] - cgiemail <no-dsa> (Will be removed in next point update)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6
 CVE-2017-5615 (cgiemail and cgiecho allow remote attackers to inject HTTP headers via ...)
 	{DLA-869-1}
 	- cgiemail <removed> (bug #852031)
-	[jessie] - cgiemail <no-dsa> (Will be removed in next point update)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6
 CVE-2017-5614 (Open redirect vulnerability in cgiemail and cgiecho allows remote ...)
 	{DLA-869-1}
 	- cgiemail <removed> (bug #852031)
-	[jessie] - cgiemail <no-dsa> (Will be removed in next point update)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6
 CVE-2017-5613 (Format string vulnerability in cgiemail and cgiecho allows remote ...)
 	{DLA-869-1}
 	- cgiemail <removed> (bug #852031)
-	[jessie] - cgiemail <no-dsa> (Will be removed in next point update)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6
 CVE-2016-10155 (Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) ...)
 	- qemu 1:2.8+dfsg-2 (low; bug #852232)
@@ -35377,7 +35370,6 @@
 	NOTE: Starting with 5.4.0-1 Debian uses the system copy of libgd
 CVE-2016-5876 (ownCloud server before 8.2.6 and 9.x before 9.0.3, when the gallery ...)
 	- owncloud <removed>
-	[jessie] - owncloud <no-dsa> (Will be removed in point release)
 	NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2016-010
 CVE-2016-5875 [tiff: heap-based buffer overflow when using the PixarLog compression format]
 	RESERVED

More information about the Secure-testing-commits mailing list