[Secure-testing-commits] r56731 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Oct 16 08:01:39 UTC 2017
Author: carnil
Date: 2017-10-16 08:01:39 +0000 (Mon, 16 Oct 2017)
New Revision: 56731
Modified:
data/CVE/list
Log:
Remove two no-dsa entries which will be fixed along with upcoming DSA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-16 07:15:18 UTC (rev 56730)
+++ data/CVE/list 2017-10-16 08:01:39 UTC (rev 56731)
@@ -37819,7 +37819,6 @@
CVE-2017-2624 [Timing attack against MIT Cookie]
RESERVED
- xorg-server 2:1.19.2-1 (low; bug #856398)
- [jessie] - xorg-server <no-dsa> (Minor issue, can be fixed in a point update or next DSA)
[wheezy] - xorg-server <no-dsa> (Minor issue, can be fixed in a point update or next DSA)
NOTE: https://www.x41-dsec.de/lab/advisories/x41-2017-001-xorg/
CVE-2017-2623
@@ -90521,7 +90520,6 @@
[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
CVE-2015-3164 (The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 ...)
- xorg-server 2:1.17.2-1 (bug #788410)
- [jessie] - xorg-server <no-dsa> (Minor issue, can be fixed along in a future DSA)
[wheezy] - xorg-server <not-affected> (XWayland not present)
[squeeze] - xorg-server <not-affected> (XWayland not present)
NOTE: http://lists.freedesktop.org/archives/wayland-devel/2015-June/022548.html
More information about the Secure-testing-commits
mailing list