[Secure-testing-commits] r57982 - in data: . CVE DSA

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Nov 23 22:05:10 UTC 2017 

Author: jmm
Date: 2017-11-23 22:05:10 +0000 (Thu, 23 Nov 2017)
New Revision: 57982

Modified:
   data/CVE/list
   data/DSA/list
   data/dsa-needed.txt
Log:
otrs, openjdk-7 DSA


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-11-23 21:47:29 UTC (rev 57981)
+++ data/CVE/list	2017-11-23 22:05:10 UTC (rev 57982)
@@ -3353,6 +3353,7 @@
 	- frr <itp> (bug #863249)
 CVE-2017-15864 (In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x ...)
 	- otrs2 4.0.7-2
+	[jessie] - otrs2 3.3.18-1+deb8u2
 	NOTE: https://www.otrs.com/security-advisory-2017-06-security-update-otrs-3-3/
 	NOTE: https://github.com/OTRS/otrs/compare/3bc58ebeb9bdbe8107251a03cf7b9b8cfc515f53...80a0a9a138278d63a2621d146eb3c29e982aa2d5
 	NOTE: Root cause for the issue is the recursive parsing handling in the old

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2017-11-23 21:47:29 UTC (rev 57981)
+++ data/DSA/list	2017-11-23 22:05:10 UTC (rev 57982)
@@ -1,3 +1,10 @@
+[23 Nov 2017] DSA-4048-1 openjdk-7 - security update
+	{CVE-2017-10274 CVE-2017-10281 CVE-2017-10285 CVE-2017-10295 CVE-2017-10345 CVE-2017-10346 CVE-2017-10347 CVE-2017-10348 CVE-2017-10349 CVE-2017-10350 CVE-2017-10355 CVE-2017-10356 CVE-2017-10357 CVE-2017-10388}
+	[jessie] - openjdk-7 7u151-2.6.11-2~deb8u1
+[23 Nov 2017] DSA-4047-1 otrs2 - security update
+	{CVE-2017-16664}
+	[jessie] - otrs2 3.3.18-1+deb8u2
+	[stretch] - otrs2 5.0.16-1+deb9u3
 [22 Nov 2017] DSA-4046-1 libspring-ldap-java - security update
 	{CVE-2017-8028}
 	[jessie] - libspring-ldap-java 1.3.1.RELEASE-5+deb8u1

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2017-11-23 21:47:29 UTC (rev 57981)
+++ data/dsa-needed.txt	2017-11-23 22:05:10 UTC (rev 57982)
@@ -29,10 +29,6 @@
   due to new dependency being introduced
   Important: original fix would introduce a regression (needs fix upstream)
 --
-openjdk-7/oldstable (jmm)
---
-otrs2 (jmm)
---
 php-horde-image
 --
 php5

More information about the Secure-testing-commits mailing list