[Secure-testing-commits] r58013 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 25 09:35:40 UTC 2017
Author: carnil
Date: 2017-11-25 09:35:40 +0000 (Sat, 25 Nov 2017)
New Revision: 58013
Modified:
data/CVE/list
Log:
Mark CVE-2017-16879/ncurses as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-25 09:33:08 UTC (rev 58012)
+++ data/CVE/list 2017-11-25 09:35:40 UTC (rev 58013)
@@ -237,6 +237,8 @@
NOTE: Can't seem to reproduce this in wheezy.
CVE-2017-16879 (Stack-based buffer overflow in the _nc_write_entry function in ...)
- ncurses <unfixed> (bug #882620)
+ [stretch] - ncurses <no-dsa> (Minor issue)
+ [jessie] - ncurses <no-dsa> (Minor issue)
NOTE: PoC https://packetstormsecurity.com/files/download/145045/tic-overflow.tgz
CVE-2017-16878
RESERVED
More information about the Secure-testing-commits
mailing list