[Secure-testing-commits] r55379 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Sep 1 21:54:40 UTC 2017
Author: jmm
Date: 2017-09-01 21:54:40 +0000 (Fri, 01 Sep 2017)
New Revision: 55379
Modified:
data/CVE/list
Log:
mimedefang no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-01 21:41:50 UTC (rev 55378)
+++ data/CVE/list 2017-09-01 21:54:40 UTC (rev 55379)
@@ -30,6 +30,8 @@
NOTE: https://blogs.gentoo.org/ago/2017/07/12/graphicsmagick-use-after-free-in-closeblob-blob-c/
CVE-2017-14102 (MIMEDefang 2.80 and earlier creates a PID file after dropping ...)
- mimedefang <unfixed>
+ [stretch] - mimedefang <no-dsa> (Minor issue)
+ [jessie] - mimedefang <no-dsa> (Minor issue)
[wheezy] - mimedefang <ignored> (Minor issue only exploitable if daemon is compromised in some other way)
NOTE: http://lists.roaringpenguin.com/pipermail/mimedefang/2017-August/038077.html
NOTE: http://lists.roaringpenguin.com/pipermail/mimedefang/2017-August/038085.html
More information about the Secure-testing-commits
mailing list