[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] The CVE was marked as no-dsa for Debian Security and there is no reason to…

Ola Lundqvist opal at debian.org
Mon Apr 9 19:04:09 BST 2018 

Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ccc1d155 by Ola Lundqvist at 2018-04-09T20:03:32+02:00
The CVE was marked as no-dsa for Debian Security and there is no reason to believe why wheezy should be treated differently. Therefore marking as ignored and removing the package from dla-needed.txt.

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -15601,6 +15601,7 @@ CVE-2018-7442 (An issue was discovered in Leptonica through 1.75.3. The ...)
 	- leptonlib <unfixed>
 	[stretch] - leptonlib <no-dsa> (Minor issue)
 	[jessie] - leptonlib <no-dsa> (Minor issue)
+	[wheezy] - leptonlib <ignored> (Minor issue)
 	NOTE: https://lists.debian.org/debian-lts/2018/02/msg00086.html
 CVE-2018-7441 (Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which might ...)
 	- leptonlib <unfixed> (unimportant)


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -57,9 +57,6 @@ lame (Hugo Lefeuvre)
   NOTE: 20180317: Patch available and tested. However I am probably not going to upload it since the security team is not
   NOTE: interested in patching Jessie and I evaluate regression risks as non negligible.
 --
-leptonlib
-  NOTE: more issues like previous ones
---
 libav (Hugo Lefeuvre)
   NOTE: 20180118: Diego Biurrun (from the libav team) was working on patches, but encountered personal issues and had to stop.
   NOTE: It is unlikely that he will start again in the next weeks.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ccc1d155bc76cb557589a10fbdb6bffcda678c7f

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ccc1d155bc76cb557589a10fbdb6bffcda678c7f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180409/33c9a3bd/attachment.html>

More information about the debian-security-tracker-commits mailing list