[Secure-testing-commits] r56274 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Sep 30 09:27:43 UTC 2017
Author: jmm
Date: 2017-09-30 09:27:43 +0000 (Sat, 30 Sep 2017)
New Revision: 56274
Modified:
data/CVE/list
Log:
ignored for wheezy as well (per discussion on debian-lts)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-30 09:13:25 UTC (rev 56273)
+++ data/CVE/list 2017-09-30 09:27:43 UTC (rev 56274)
@@ -64838,7 +64838,7 @@
- coreutils <unfixed> (bug #816320)
[stretch] - coreutils <ignored> (Minor issue)
[jessie] - coreutils <ignored> (Minor issue)
- [wheezy] - coreutils <no-dsa> (Minor issue)
+ [wheezy] - coreutils <ignored> (Minor issue)
NOTE: Restricting ioctl on the kernel side seems the better approach, but rejected by Linux upstream
NOTE: Fixing this issue via setsid() would introduce regressions:
NOTE: https://www.kernel.org/pub/linux/utils/util-linux/v2.28/v2.28-ReleaseNotes
@@ -110061,7 +110061,7 @@
- accountsservice <unfixed> (low; bug #757912)
[stretch] - accountsservice <ignored> (Minor issue)
[jessie] - accountsservice <ignored> (Minor issue)
- [wheezy] - accountsservice <no-dsa> (Minor issue)
+ [wheezy] - accountsservice <ignored> (Minor issue)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=55000
CVE-2014-5272 (libavcodec/iff.c in FFMpeg before 1.1.14, 1.2.x before 1.2.8, 2.2.x ...)
- ffmpeg 7:2.4.1-1
More information about the Secure-testing-commits
mailing list