[Secure-testing-commits] r58024 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 25 16:36:14 UTC 2017
Author: carnil
Date: 2017-11-25 16:36:14 +0000 (Sat, 25 Nov 2017)
New Revision: 58024
Modified:
data/CVE/list
Log:
CVE-2017-16932, mark as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-25 16:18:28 UTC (rev 58023)
+++ data/CVE/list 2017-11-25 16:36:14 UTC (rev 58024)
@@ -43,6 +43,8 @@
NOTE: Fix for the incomplete fix for CVE-2016-2313
CVE-2017-16932 (parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in ...)
- libxml2 <unfixed> (bug #882613)
+ [stretch] - libxml2 <no-dsa> (Minor issue)
+ [jessie] - libxml2 <no-dsa> (Minor issue)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=759579
NOTE: https://github.com/GNOME/libxml2/commit/899a5d9f0ed13b8e32449a08a361e0de127dd961
CVE-2017-16931 (parser.c in libxml2 before 2.9.5 mishandles parameter-entity references ...)
More information about the Secure-testing-commits
mailing list