[Secure-testing-commits] r51619 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun May 14 17:07:45 UTC 2017
Author: carnil
Date: 2017-05-14 17:07:45 +0000 (Sun, 14 May 2017)
New Revision: 51619
Modified:
data/CVE/list
Log:
Adjust version for CVE-2017-10189
Rationale: The commit 701ab8129ba9ea64f569daedca9a8603abad740f is really
in 3.5, so 3.5-1 for unstable. This make for unstable open CVE-2017-5668
which was fixed in a secondary commit, included in 3.5.1-1.
For stable and oldstable though the fixes were made complete, thus kept
CVE-2017-5668 as <not-affected> and CVE-2017-10189 marked as fixed with
the set of commits fixing ultimatively the issue.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-14 15:45:30 UTC (rev 51618)
+++ data/CVE/list 2017-05-14 17:07:45 UTC (rev 51619)
@@ -9494,7 +9494,7 @@
NOTE: This CVE exists because of an incomplete fix for CVE-2016-10189
CVE-2016-10189 (BitlBee before 3.5 allows remote attackers to cause a denial of ...)
{DLA-832-1}
- - bitlbee 3.5.1-1
+ - bitlbee 3.5-1
NOTE: https://bugs.bitlbee.org/ticket/1282
NOTE: Fixed by: https://github.com/bitlbee/bitlbee/commit/701ab8129ba9ea64f569daedca9a8603abad740f (3.5)
NOTE: http://www.openwall.com/lists/oss-security/2017/01/30/4
More information about the Secure-testing-commits
mailing list