[Git][security-tracker-team/security-tracker][master] Remove remaining "not used by any sponsor" justification for Jessie LTS
Sylvain Beucler
beuc at debian.org
Tue Apr 16 11:14:16 BST 2019
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d6033f53 by Sylvain Beucler at 2019-04-16T10:12:13Z
Remove remaining "not used by any sponsor" justification for Jessie LTS
Request from Raphaƫl Hertzog
https://lists.debian.org/debian-lts/2019/04/msg00122.html
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5913,22 +5913,22 @@ CVE-2019-9087
RESERVED
- hoteldruid 2.3.2-1
[stretch] - hoteldruid <no-dsa> (Minor issue)
- [jessie] - hoteldruid <no-dsa> (low popcon, not used by any sponsor)
+ [jessie] - hoteldruid <no-dsa> (low popcon)
CVE-2019-9086
RESERVED
- hoteldruid 2.3.2-1
[stretch] - hoteldruid <no-dsa> (Minor issue)
- [jessie] - hoteldruid <no-dsa> (low popcon, not used by any sponsor)
+ [jessie] - hoteldruid <no-dsa> (low popcon)
CVE-2019-9085
RESERVED
- hoteldruid 2.3.2-1
[stretch] - hoteldruid <no-dsa> (Minor issue)
- [jessie] - hoteldruid <no-dsa> (low popcon, not used by any sponsor)
+ [jessie] - hoteldruid <no-dsa> (low popcon)
CVE-2019-9084
RESERVED
- hoteldruid 2.3.2-1
[stretch] - hoteldruid <no-dsa> (Minor issue)
- [jessie] - hoteldruid <no-dsa> (low popcon, not used by any sponsor)
+ [jessie] - hoteldruid <no-dsa> (low popcon)
CVE-2019-9083 (SQLiteManager 1.20 and 1.24 allows SQL injection via the /sqlitemanage ...)
NOT-FOR-US: SQLiteManager
CVE-2018-20795 (tecrail Responsive FileManager 9.13.4 allows remote attackers to read ...)
@@ -30049,13 +30049,13 @@ CVE-2019-0162
CVE-2019-0161 (Stack overflow in XHCI for EDK II may allow an unauthenticated user to ...)
- edk2 0~20180803.dd4cae4d-1 (low)
[stretch] - edk2 <no-dsa> (Minor issue)
- [jessie] - edk2 <end-of-life> (non-free, not used by any sponsor)
+ [jessie] - edk2 <end-of-life> (non-free)
NOTE: https://github.com/tianocore/edk2/commit/acebdf14c985c5c9f50b37ece0b15ada87767359
NOTE: https://github.com/tianocore/edk2/commit/72750e3bf9174f15c17e78f0f117b5e7311bb49f
CVE-2019-0160 (Buffer overflow in system firmware for EDK II may allow unauthenticate ...)
- edk2 0~20181115.85588389-1 (low)
[stretch] - edk2 <no-dsa> (Minor issue)
- [jessie] - edk2 <end-of-life> (non-free, not used by any sponsor)
+ [jessie] - edk2 <end-of-life> (non-free)
NOTE: https://github.com/tianocore/edk2/commit/4df8f5bfa28b8b881e506437e8f08d92c1a00370
NOTE: https://github.com/tianocore/edk2/commit/b9ae1705adfdd43668027a25a2b03c2e81960219
NOTE: https://github.com/tianocore/edk2/commit/5c0748f43f4e1cc15fdd0be64a764eacd7df92f6
@@ -48751,12 +48751,12 @@ CVE-2018-12184
CVE-2018-12183 (Stack overflow in DxeCore for EDK II may allow an unauthenticated user ...)
- edk2 0~20181115.85588389-1
[stretch] - edk2 <no-dsa> (Minor issue)
- [jessie] - edk2 <end-of-life> (non-free, not used by any sponsor)
+ [jessie] - edk2 <end-of-life> (non-free)
NOTE: https://github.com/tianocore/edk2/commit/0a0d5296e448fc350de1594c49b9c0deff7fad60
CVE-2018-12182 (Insufficient memory write check in SMM service for EDK II may allow an ...)
- edk2 <unfixed> (low)
[stretch] - edk2 <no-dsa> (Minor issue)
- [jessie] - edk2 <end-of-life> (non-free is not supported, not used by any sponsor)
+ [jessie] - edk2 <end-of-life> (non-free is not supported)
NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=1136
CVE-2018-12181 (Stack overflow in corrupted bmp for EDK II may allow unprivileged user ...)
- edk2 0~20181115.85588389-3 (bug #924615)
@@ -48775,7 +48775,7 @@ CVE-2018-12180 (Buffer overflow in BlockIo service for EDK II may allow an unaut
CVE-2018-12179 (Improper configuration in system firmware for EDK II may allow unauthe ...)
- edk2 <unfixed> (low)
[stretch] - edk2 <no-dsa> (Minor issue)
- [jessie] - edk2 <end-of-life> (non-free is not supported, not used by any sponsor)
+ [jessie] - edk2 <end-of-life> (non-free is not supported)
NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=1133
CVE-2018-12178 (Buffer overflow in network stack for EDK II may allow unprivileged use ...)
- edk2 0~20181115.85588389-3 (bug #924615)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d6033f53dd9e4677bf6064566ead0c3693e29806
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d6033f53dd9e4677bf6064566ead0c3693e29806
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190416/e87a3270/attachment.html>
More information about the debian-security-tracker-commits
mailing list