[Secure-testing-commits] r52137 - in data: CVE DSA

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-05-31 04:27:12 +0000 (Wed, 31 May 2017)
New Revision: 52137

Modified:
   data/CVE/list
   data/DSA/list
Log:
Add entry for DSA-3868-1/openldap

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-31 04:22:09 UTC (rev 52136)
+++ data/CVE/list	2017-05-31 04:27:12 UTC (rev 52137)
@@ -125,6 +125,7 @@
 	[wheezy] - openvswitch <not-affected> (Vulnerable code using tot_len introduced later)
 	NOTE: https://mail.openvswitch.org/pipermail/ovs-dev/2016-July/319503.html
 CVE-2017-9287 (servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to ...)
+	{DSA-3868-1}
 	- openldap 2.4.44+dfsg-5 (bug #863563)
 	NOTE: http://www.openldap.org/its/?findid=8655
 	NOTE: ftp://ftp.openldap.org/incoming/20170517_rtandy_Fix-double-free-of-search-base-with-page-size-0.patch

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2017-05-31 04:22:09 UTC (rev 52136)
+++ data/DSA/list	2017-05-31 04:27:12 UTC (rev 52137)
@@ -1,3 +1,6 @@
+[30 May 2017] DSA-3868-1 openldap - security update
+	{CVE-2017-9287}
+	[jessie] - openldap 2.4.40+dfsg-1+deb8u3
 [30 May 2017] DSA-3867-1 sudo - security update
 	{CVE-2017-1000367}
 	[jessie] - sudo 1.8.10p3-1+deb8u4