[Git][security-tracker-team/security-tracker][master] Remove libtomcrypt from dla-needed.txt. Mark CVE-2018-0739 as <no-das> for…

[Mike Gabriel]

Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker


Commits:
74903970 by Mike Gabriel at 2018-07-19T16:28:40+02:00
Remove libtomcrypt from dla-needed.txt. Mark CVE-2018-0739 as <no-das> for [jessie]. Following the security team's decision on this.

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -37825,6 +37825,7 @@ CVE-2018-0739 (Constructed ASN.1 types with a recursive definition (such as can 
 	- openssl1.0 1.0.2o-1
 	- libtomcrypt 1.18.2-1 (low)
 	[stretch] - libtomcrypt <no-dsa> (Minor issue)
+	[jessie] - libtomcrypt <no-dsa> (Minor issue)
 	NOTE: https://www.openssl.org/news/secadv/20180327.txt
 	NOTE: OpenSSL_1_1_0-stable: https://git.openssl.org/?p=openssl.git;a=commit;h=2ac4c6f7b2b2af20c0e2b0ba05367e454cd11b33
 	NOTE: OpenSSL_1_0_2-stable: https://git.openssl.org/?p=openssl.git;a=commit;h=9310d45087ae546e27e61ddf8f6367f29848220d


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -78,8 +78,6 @@ libidn (Santiago)
 --
 libspring-java	(Abhijith PA)
 --
-libtomcrypt
---
 linux (Ben Hutchings)
 --
 linux-4.9 (Ben Hutchings)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/74903970be7b79394d37eee1f9743375d8a7bad9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/74903970be7b79394d37eee1f9743375d8a7bad9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180719/8c00b17c/attachment.html>