[Git][security-tracker-team/security-tracker][master] Remove remaining "not used by any sponsor" justification for Jessie LTS

Sylvain Beucler beuc at debian.org
Tue Apr 16 11:14:16 BST 2019



Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d6033f53 by Sylvain Beucler at 2019-04-16T10:12:13Z
Remove remaining "not used by any sponsor" justification for Jessie LTS
Request from Raphaƫl Hertzog
https://lists.debian.org/debian-lts/2019/04/msg00122.html

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5913,22 +5913,22 @@ CVE-2019-9087
 	RESERVED
 	- hoteldruid 2.3.2-1
 	[stretch] - hoteldruid <no-dsa> (Minor issue)
-	[jessie] - hoteldruid <no-dsa> (low popcon, not used by any sponsor)
+	[jessie] - hoteldruid <no-dsa> (low popcon)
 CVE-2019-9086
 	RESERVED
 	- hoteldruid 2.3.2-1
 	[stretch] - hoteldruid <no-dsa> (Minor issue)
-	[jessie] - hoteldruid <no-dsa> (low popcon, not used by any sponsor)
+	[jessie] - hoteldruid <no-dsa> (low popcon)
 CVE-2019-9085
 	RESERVED
 	- hoteldruid 2.3.2-1
 	[stretch] - hoteldruid <no-dsa> (Minor issue)
-	[jessie] - hoteldruid <no-dsa> (low popcon, not used by any sponsor)
+	[jessie] - hoteldruid <no-dsa> (low popcon)
 CVE-2019-9084
 	RESERVED
 	- hoteldruid 2.3.2-1
 	[stretch] - hoteldruid <no-dsa> (Minor issue)
-	[jessie] - hoteldruid <no-dsa> (low popcon, not used by any sponsor)
+	[jessie] - hoteldruid <no-dsa> (low popcon)
 CVE-2019-9083 (SQLiteManager 1.20 and 1.24 allows SQL injection via the /sqlitemanage ...)
 	NOT-FOR-US: SQLiteManager
 CVE-2018-20795 (tecrail Responsive FileManager 9.13.4 allows remote attackers to read  ...)
@@ -30049,13 +30049,13 @@ CVE-2019-0162
 CVE-2019-0161 (Stack overflow in XHCI for EDK II may allow an unauthenticated user to ...)
 	- edk2 0~20180803.dd4cae4d-1 (low)
 	[stretch] - edk2 <no-dsa> (Minor issue)
-	[jessie] - edk2 <end-of-life> (non-free, not used by any sponsor)
+	[jessie] - edk2 <end-of-life> (non-free)
 	NOTE: https://github.com/tianocore/edk2/commit/acebdf14c985c5c9f50b37ece0b15ada87767359
 	NOTE: https://github.com/tianocore/edk2/commit/72750e3bf9174f15c17e78f0f117b5e7311bb49f
 CVE-2019-0160 (Buffer overflow in system firmware for EDK II may allow unauthenticate ...)
 	- edk2 0~20181115.85588389-1 (low)
 	[stretch] - edk2 <no-dsa> (Minor issue)
-	[jessie] - edk2 <end-of-life> (non-free, not used by any sponsor)
+	[jessie] - edk2 <end-of-life> (non-free)
 	NOTE: https://github.com/tianocore/edk2/commit/4df8f5bfa28b8b881e506437e8f08d92c1a00370
 	NOTE: https://github.com/tianocore/edk2/commit/b9ae1705adfdd43668027a25a2b03c2e81960219
 	NOTE: https://github.com/tianocore/edk2/commit/5c0748f43f4e1cc15fdd0be64a764eacd7df92f6
@@ -48751,12 +48751,12 @@ CVE-2018-12184
 CVE-2018-12183 (Stack overflow in DxeCore for EDK II may allow an unauthenticated user ...)
 	- edk2 0~20181115.85588389-1
 	[stretch] - edk2 <no-dsa> (Minor issue)
-	[jessie] - edk2 <end-of-life> (non-free, not used by any sponsor)
+	[jessie] - edk2 <end-of-life> (non-free)
 	NOTE: https://github.com/tianocore/edk2/commit/0a0d5296e448fc350de1594c49b9c0deff7fad60
 CVE-2018-12182 (Insufficient memory write check in SMM service for EDK II may allow an ...)
 	- edk2 <unfixed> (low)
 	[stretch] - edk2 <no-dsa> (Minor issue)
-	[jessie] - edk2 <end-of-life> (non-free is not supported, not used by any sponsor)
+	[jessie] - edk2 <end-of-life> (non-free is not supported)
 	NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=1136
 CVE-2018-12181 (Stack overflow in corrupted bmp for EDK II may allow unprivileged user ...)
 	- edk2 0~20181115.85588389-3 (bug #924615)
@@ -48775,7 +48775,7 @@ CVE-2018-12180 (Buffer overflow in BlockIo service for EDK II may allow an unaut
 CVE-2018-12179 (Improper configuration in system firmware for EDK II may allow unauthe ...)
 	- edk2 <unfixed> (low)
 	[stretch] - edk2 <no-dsa> (Minor issue)
-	[jessie] - edk2 <end-of-life> (non-free is not supported, not used by any sponsor)
+	[jessie] - edk2 <end-of-life> (non-free is not supported)
 	NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=1133
 CVE-2018-12178 (Buffer overflow in network stack for EDK II may allow unprivileged use ...)
 	- edk2 0~20181115.85588389-3 (bug #924615)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d6033f53dd9e4677bf6064566ead0c3693e29806

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d6033f53dd9e4677bf6064566ead0c3693e29806
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190416/e87a3270/attachment.html>


More information about the debian-security-tracker-commits mailing list