[Secure-testing-commits] r51804 - in data: . CVE

Ola Lundqvist opal at moszumanska.debian.org
Sun May 21 21:33:59 UTC 2017 

Author: opal
Date: 2017-05-21 21:33:59 +0000 (Sun, 21 May 2017)
New Revision: 51804

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
Triaging work.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-21 21:10:54 UTC (rev 51803)
+++ data/CVE/list	2017-05-21 21:33:59 UTC (rev 51804)
@@ -4325,7 +4325,9 @@
 	- postgresql-9.4 <removed>
 	- postgresql-9.1 <removed>
 	[jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl)
+	[wheezy] - postgresql-9.1 <not-affected> (Vulnerable code do not exist)
 	- postgresql-8.4 <removed>
+	[wheezy] - postgresql-8.4 <not-affected> (Vulnerable code do not exist)
 	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=c33c42362256382ed398df9dcda559cd547c68a7
 	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=cad15943225adbcadea51602b38b04d71d1183d2
 	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=935e77d527a018b652f247c7374c558871210db6
@@ -26916,7 +26918,7 @@
 CVE-2016-8728
 	RESERVED
 	- mupdf <unfixed>
-	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0242
+	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0242%20
 CVE-2016-8727 (An exploitable information disclosure vulnerability exists in the Web ...)
 	NOT-FOR-US: Moxa
 CVE-2016-8726 (An exploitable null pointer dereference vulnerability exists in the ...)

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2017-05-21 21:10:54 UTC (rev 51803)
+++ data/dla-needed.txt	2017-05-21 21:33:59 UTC (rev 51804)
@@ -79,6 +79,8 @@
   NOTE: https://blogs.gentoo.org/ago/2017/01/29/mp3splt-invalid-free-in-free_options-options_manager-c/
   NOTE: -- Jonas Meurer
 --
+mupdf
+--
 mysql-connector-python
   NOTE: No patch to apply. Upstream has released new upstream version 2.1.6
   NOTE: with claimed fixes. Diff from prior version is 2198 lines long and

More information about the Secure-testing-commits mailing list