[Secure-testing-commits] r57186 - in data: . CVE
Markus Koschany
apo at moszumanska.debian.org
Tue Oct 31 23:01:42 UTC 2017
Author: apo
Date: 2017-10-31 23:01:41 +0000 (Tue, 31 Oct 2017)
New Revision: 57186
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Mark jbossas4 as end-of-life for Wheezy.
Remove the package from dla-needed.txt. It is obsolete. The JBoss Application
Server was also never completely packaged.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-31 22:09:06 UTC (rev 57185)
+++ data/CVE/list 2017-10-31 23:01:41 UTC (rev 57186)
@@ -11640,6 +11640,7 @@
NOTE: https://www.samba.org/samba/security/CVE-2017-12150.html
CVE-2017-12149 (In Jboss Application Server as shipped with Red Hat Enterprise ...)
- jbossas4 <removed>
+ [wheezy] - jbossas4 <end-of-life> (incomplete packaging, 4.x series released more than nine years ago.)
CVE-2017-12148
RESERVED
NOT-FOR-US: Ansible Tower
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-10-31 22:09:06 UTC (rev 57185)
+++ data/dla-needed.txt 2017-10-31 23:01:41 UTC (rev 57186)
@@ -21,8 +21,6 @@
jasperreports
NOTE: 20171031: No details available. Asked upstream for clarification.
--
-jbossas4
---
lame (Hugo Lefeuvre)
NOTE: Couldn't reproduce CVE-2017-{69-72}. Wait for next upstream release 3.100 ?
NOTE: https://lists.debian.org/debian-lts/2017/09/msg00082.html
More information about the Secure-testing-commits
mailing list