[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] tag graphite2 as no-DSA for wheezy

Abhijith PA gitlab at salsa.debian.org
Sun Apr 1 05:22:22 UTC 2018 

Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker


Commits:
69d3a325 by Abhijith PA at 2018-04-01T10:51:55+05:30
tag graphite2 as no-DSA for wheezy

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2733,6 +2733,7 @@ CVE-2018-7999 (In libgraphite2 in graphite2 1.3.11, a NULL pointer dereference .
 	- graphite2 1.3.11-2 (bug #892590)
 	[stretch] - graphite2 <no-dsa> (Minor issue)
 	[jessie] - graphite2 <no-dsa> (Minor issue)
+        [wheezy] - graphite2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/silnrsi/graphite/commit/db132b4731a9b4c9534144ba3a18e65b390e9ff6
 	NOTE: https://github.com/silnrsi/graphite/issues/22
 CVE-2018-7998 (In libvips before 8.6.3, a NULL function pointer dereference ...)


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -32,10 +32,6 @@ gcc-4.7 (Roberto C. Sánchez)
   NOTE: Backport the retpoline support for spectre mitigation.
   NOTE: Do we want/need it on this gcc version as well?
 --
-graphite2 (Abhijith PA)
- NOTE: 20180317: Unable to reproduce with given POC. Waiting for upstream comment
- NOTE: 20180330: Please upload https://mentors.debian.net/debian/pool/main/g/graphite2/graphite2_1.3.10
---
 imagemagick
 --
 ipython



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/69d3a325403bdb49fde60bc448d56ea7299ff7c2

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/69d3a325403bdb49fde60bc448d56ea7299ff7c2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180401/f4eb2884/attachment.html>

More information about the Secure-testing-commits mailing list