[Secure-testing-commits] r51794 - in data: . CVE

Ola Lundqvist opal at moszumanska.debian.org
Sun May 21 12:08:33 UTC 2017 

Author: opal
Date: 2017-05-21 12:08:33 +0000 (Sun, 21 May 2017)
New Revision: 51794

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
Follow jessie.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-21 09:10:25 UTC (rev 51793)
+++ data/CVE/list	2017-05-21 12:08:33 UTC (rev 51794)
@@ -103,21 +103,25 @@
 	[experimental] - dwarfutils 20170416-1
 	- dwarfutils <unfixed>
 	[jessie] - dwarfutils <no-dsa> (Minor issue)
+	[wheezy] - dwarfutils <no-dsa> (Minor issue)
 	NOTE: https://www.prevanders.net/dwarfbug.html#DW201703-001
 CVE-2017-9054 (An issue, also known as DW201703-002, was discovered in libdwarf ...)
 	[experimental] - dwarfutils 20170416-1
 	- dwarfutils <unfixed>
 	[jessie] - dwarfutils <no-dsa> (Minor issue)
+	[wheezy] - dwarfutils <no-dsa> (Minor issue)
 	NOTE: https://www.prevanders.net/dwarfbug.html#DW201703-002
 CVE-2017-9053 (An issue, also known as DW201703-005, was discovered in libdwarf ...)
 	[experimental] - dwarfutils 20170416-1
 	- dwarfutils <unfixed>
 	[jessie] - dwarfutils <no-dsa> (Minor issue)
+	[wheezy] - dwarfutils <no-dsa> (Minor issue)
 	NOTE: https://www.prevanders.net/dwarfbug.html#DW201703-005
 CVE-2017-9052 (An issue, also known as DW201703-006, was discovered in libdwarf ...)
 	[experimental] - dwarfutils 20170416-1
 	- dwarfutils <unfixed>
 	[jessie] - dwarfutils <no-dsa> (Minor issue)
+	[wheezy] - dwarfutils <no-dsa> (Minor issue)
 	NOTE: https://www.prevanders.net/dwarfbug.html#DW201703-006
 CVE-2017-9051 (libav before 12.1 is vulnerable to an invalid read of size 1 due to ...)
 	- libav <removed> (low)
@@ -149,30 +153,37 @@
 CVE-2017-9044 (The print_symbol_for_build_attribute function in readelf.c in GNU ...)
 	- binutils <unfixed>
 	[jessie] - binutils <no-dsa> (Minor issue)
+	[wheezy] - binutils <no-dsa> (Minor issue)
 CVE-2017-9043 (readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large ...)
 	- binutils <unfixed>
 	[jessie] - binutils <no-dsa> (Minor issue)
+	[wheezy] - binutils <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=ddef72cdc10d82ba011a7ff81cafbbd3466acf54
 CVE-2017-9042 (readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in ...)
 	- binutils <unfixed>
 	[jessie] - binutils <no-dsa> (Minor issue)
+	[wheezy] - binutils <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7296a62a2a237f6b1ad8db8c38b090e9f592c8cf
 CVE-2017-9041 (GNU Binutils 2.28 allows remote attackers to cause a denial of service ...)
 	- binutils <unfixed>
 	[jessie] - binutils <no-dsa> (Minor issue)
+	[wheezy] - binutils <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=75ec1fdbb797a389e4fe4aaf2e15358a070dcc19
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=c4ab9505b53cdc899506ed421fddb7e1f8faf7a3
 CVE-2017-9040 (GNU Binutils 2017-04-03 allows remote attackers to cause a denial of ...)
 	- binutils <unfixed>
 	[jessie] - binutils <no-dsa> (Minor issue)
+	[wheezy] - binutils <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7296a62a2a237f6b1ad8db8c38b090e9f592c8cf
 CVE-2017-9039 (GNU Binutils 2.28 allows remote attackers to cause a denial of service ...)
 	- binutils <unfixed>
 	[jessie] - binutils <no-dsa> (Minor issue)
+	[wheezy] - binutils <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=82156ab704b08b124d319c0decdbd48b3ca2dac5
 CVE-2017-9038 (GNU Binutils 2.28 allows remote attackers to cause a denial of service ...)
 	- binutils <unfixed>
 	[jessie] - binutils <no-dsa> (Minor issue)
+	[wheezy] - binutils <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f32ba72991d2406b21ab17edc234a2f3fa7fb23d
 CVE-2017-9037
 	RESERVED
@@ -701,6 +712,7 @@
 CVE-2017-8825 (A null dereference vulnerability has been found in the MIME handling ...)
 	- libetpan <unfixed> (bug #862151)
 	[jessie] - libetpan <no-dsa> (Minor issue)
+	[wheezy] - libetpan <no-dsa> (Minor issue)
 	NOTE: https://github.com/dinhviethoa/libetpan/commit/1fe8fbc032ccda1db9af66d93016b49c16c1f22d
 	NOTE: https://github.com/dinhviethoa/libetpan/issues/274
 CVE-2017-8824

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2017-05-21 09:10:25 UTC (rev 51793)
+++ data/dla-needed.txt	2017-05-21 12:08:33 UTC (rev 51794)
@@ -24,6 +24,8 @@
 eglibc
   NOTE: Patch available, however not yet applied upstream.
 --
+graphicsmagick
+--
 firefox-esr (Emilio Pozuelo)
   NOTE: no update needed yet, but next update will be for ESR 52 as ESR 45 is now
   NOTE: EOL. I have already started to look at ESR 52 to anticipate any problems.

More information about the Secure-testing-commits mailing list