[Secure-testing-commits] r57789 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 18 18:22:40 UTC 2017
Author: carnil
Date: 2017-11-18 18:22:40 +0000 (Sat, 18 Nov 2017)
New Revision: 57789
Modified:
data/CVE/list
Log:
Add fixing (pending) versions for CVE-2017-5969 and CVE-2017-5130
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-18 18:04:18 UTC (rev 57788)
+++ data/CVE/list 2017-11-18 18:22:40 UTC (rev 57789)
@@ -32626,7 +32626,7 @@
NOTE: Fixed by: https://github.com/torvalds/linux/commit/34b2cef20f19c87999fff3da4071e66937db9644 (v4.10-rc8)
NOTE: Introduced by: https://github.com/torvalds/linux/commit/f84af32cbca70a3c6d30463dc08c7984af11c277 (v2.6.35-rc1)
CVE-2017-5969 (** DISPUTED ** libxml2 2.9.4, when used in recover mode, allows remote ...)
- - libxml2 <unfixed> (bug #855001)
+ - libxml2 2.9.4+dfsg1-5.1 (bug #855001)
[stretch] - libxml2 <no-dsa> (Minor issue, only a denial-of-service when using recover mode)
[jessie] - libxml2 <no-dsa> (Minor issue, only a denial-of-service when using recover mode)
[wheezy] - libxml2 <no-dsa> (Minor issue, only a denial-of-service when using recover mode)
@@ -35819,7 +35819,7 @@
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
CVE-2017-5130
RESERVED
- - libxml2 <unfixed> (bug #880000)
+ - libxml2 2.9.4+dfsg1-5.1 (bug #880000)
- chromium-browser 62.0.3202.75-1 (unimportant)
NOTE: chromium-browser uses system libxml2.
NOTE: https://bugs.chromium.org/p/chromium/issues/detail?id=722079 (not public)
More information about the Secure-testing-commits
mailing list