[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2019-16785,CVE-2019-16786,waitress: Mark as no-dsa for Jessie

Markus Koschany apo at debian.org
Thu Dec 26 20:45:34 GMT 2019 


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
358db1fc by Markus Koschany at 2019-12-26T20:45:14Z
CVE-2019-16785,CVE-2019-16786,waitress: Mark as no-dsa for Jessie

Minor issue

- - - - -
12eab616 by Markus Koschany at 2019-12-26T20:45:14Z
Claim sa-exim in dla-needed.txt

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -15877,12 +15877,14 @@ CVE-2019-16786 (Waitress through version 1.3.1 would parse the Transfer-Encoding
 	- waitress <unfixed> (bug #947306)
 	[buster] - waitress <no-dsa> (Minor issue)
 	[stretch] - waitress <no-dsa> (Minor issue)
+	[jessie] - waitress <no-dsa> (Minor issue)
 	NOTE: https://github.com/Pylons/waitress/security/advisories/GHSA-g2xc-35jw-c63p
 	NOTE: https://github.com/Pylons/waitress/commit/f11093a6b3240fc26830b6111e826128af7771c3
 CVE-2019-16785 (Waitress through version 1.3.1 implemented a "MAY" part of the RFC7230 ...)
 	- waitress <unfixed> (bug #947306)
 	[buster] - waitress <no-dsa> (Minor issue)
 	[stretch] - waitress <no-dsa> (Minor issue)
+	[jessie] - waitress <no-dsa> (Minor issue)
 	NOTE: https://github.com/Pylons/waitress/security/advisories/GHSA-pg36-wpm5-g57p
 	NOTE: https://github.com/Pylons/waitress/commit/8eba394ad75deaf9e5cd15b78a3d16b12e6b0eba 
 CVE-2019-16784


=====================================
data/dla-needed.txt
=====================================
@@ -107,6 +107,8 @@ ruby-rack
 ruby-rack-cors (Utkarsh Gupta)
   NOTE: 20191218: Debugging test failures. (utkarsh2102)
 --
+sa-exim (Markus Koschany)
+--
 slurm-llnl
   NOTE: 20191125: up for testing https://people.debian.org/~abhijith/upload/slurm-llnl_14.03.9-5+deb8u5.dsc
   NOTE: Regression found. (abhijith)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/831fad91e62673b2bed39aad6639e27269edb938...12eab6161b0ea6821a39bd6e7a95db2aa6c339a0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/831fad91e62673b2bed39aad6639e27269edb938...12eab6161b0ea6821a39bd6e7a95db2aa6c339a0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191226/243388b5/attachment.html>

More information about the debian-security-tracker-commits mailing list