[Secure-testing-commits] r57867 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Nov 20 20:59:32 UTC 2017


Author: carnil
Date: 2017-11-20 20:59:32 +0000 (Mon, 20 Nov 2017)
New Revision: 57867

Modified:
   data/CVE/list
Log:
Mark busybox issues as no-dsa for stretch and jessie

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-11-20 20:28:50 UTC (rev 57866)
+++ data/CVE/list	2017-11-20 20:59:32 UTC (rev 57867)
@@ -1252,6 +1252,8 @@
 CVE-2017-16544 [missing terminal escape sequence filtering in autocompletion]
 	RESERVED
 	- busybox <unfixed> (bug #882258)
+	[stretch] - busybox <no-dsa> (Minor issue, can be fixed via point release)
+	[jessie] - busybox <no-dsa> (Minor issue, can be fixed via point release)
 	NOTE: https://www.twistlock.com/2017/11/20/cve-2017-16544-busybox-autocompletion-vulnerability/
 	NOTE: https://git.busybox.net/busybox/commit/?id=c3797d40a1c57352192c6106cc0f435e7d9c11e8
 CVE-2017-16543 (Zoho ManageEngine Applications Manager 13 allows SQL injection via ...)




More information about the Secure-testing-commits mailing list