[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2018-6794/suricata no-dsa for wheezy

[Santiago R.R.]

Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cab95eae by Santiago R.R at 2018-02-20T23:46:06+01:00
CVE-2018-6794/suricata no-dsa for wheezy

Signed-off-by: Santiago R.R <santiagorr at riseup.net>

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1164,6 +1164,7 @@ CVE-2018-6794 (Suricata before 4.1 is prone to an HTTP detection bypass vulnerab
 	- suricata 1:4.0.4-1 (bug #889842)
 	[stretch] - suricata <no-dsa> (Minor issue)
 	[jessie] - suricata <no-dsa> (Minor issue)
+	[wheezy] - suricata <no-dsa> (Minor issue)
 	NOTE: https://redmine.openinfosecfoundation.org/issues/2427
 	NOTE: https://github.com/OISF/suricata/pull/3202/commits/e1ef57c848bbe4e567d5d4b66d346a742e3f77a1
 CVE-2018-6793


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -79,10 +79,6 @@ opencv (Thorsten Alteholz)
 --
 openjdk-7 (Emilio Pozuelo)
 --
-suricata (Santiago R.R.)
-  NOTE: Confirmed to be vulnerable.
-  NOTE: Follow security-team and tag it no-dsa?
---
 wordpress
   NOTE: 20180217: Upstream unsure how to fix at the moment (lamby)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cab95eae34b6a02a7a3bf2933ea8157cb2d341b6

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cab95eae34b6a02a7a3bf2933ea8157cb2d341b6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180220/99e17933/attachment-0001.html>