[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark CVE-2017-17669 ignored in wheezy

Brian May bam at debian.org
Wed Feb 7 07:03:20 UTC 2018 

Brian May pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7bdaf165 by Brian May at 2018-02-07T18:01:04+11:00
Mark CVE-2017-17669 ignored in wheezy

This issue is already marked ignored in Jessie and Stretch. There
doesn't seem to be much point fixing it in Wheezy.

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13458,6 +13458,7 @@ CVE-2017-17669 (There is a heap-based buffer over-read in the ...)
 	- exiv2 <unfixed> (bug #886006)
 	[stretch] - exiv2 <ignored> (Minor issue)
 	[jessie] - exiv2 <ignored> (Minor issue)
+	[wheezy] - exiv2 <ignored> (Minor issue)
 	NOTE: https://github.com/Exiv2/exiv2/issues/187
 CVE-2017-17668
 	RESERVED


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -17,9 +17,6 @@ dovecot (Thorsten Alteholz)
   NOTE: maintainer and security team are looking into this
   NOTE: probably no-dsa
 --
-exiv2 (Brian May)
-  NOTE: 20180101: built wheezy version with ASAN in jessie and confirmed that CVE-2017-17669 applies to wheezy version
---
 icu
   NOTE: 20171229: CVE-2017-15422 was reported via Google Code issue report in Chromium project; report is not visible to the public
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7bdaf165e9c6f1830608b9ef94a68a2dff91938f

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7bdaf165e9c6f1830608b9ef94a68a2dff91938f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180207/0bf2e57f/attachment.html>

More information about the Secure-testing-commits mailing list