[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2019-2212 for Jessie as no-dsa
Thorsten Alteholz
alteholz at debian.org
Sun Nov 24 10:57:43 GMT 2019
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b7caab57 by Thorsten Alteholz at 2019-11-24T10:55:17Z
mark CVE-2019-2212 for Jessie as no-dsa
- - - - -
5c3bde3a by Thorsten Alteholz at 2019-11-24T10:56:30Z
CVE-2016-2774 will be fixed in next upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -52241,11 +52241,14 @@ CVE-2019-2213 (In binder_free_transaction of binder.c, there is a possible use-a
NOTE: https://lore.kernel.org/patchwork/patch/1087916/
CVE-2019-2212 (In poisson_distribution of random, there is an out of bounds read. Thi ...)
- libc++ <removed>
+ [jessie] - libc++ <no-dsa> (Minor issue, Jessie versions of software that uses poisson distribution have low popcon)
- llvm-toolchain-6.0 <unfixed>
+ [jessie] - llvm-toolchain-6.0 <no-dsa> (Minor issue, Jessie versions of software that uses poisson distribution have low popcon)
- llvm-toolchain-8 <unfixed>
NOTE: https://android.googlesource.com/platform/external/libcxx/+/4cebe6f1f01a34546b3b843b5267619a61bd7d39
NOTE: https://android.googlesource.com/platform/external/libcxx/+/8260b5d56f6880a29b57f73b7f4866e47e9e4818
NOTE: https://android.googlesource.com/platform/external/libcxx/+/a16cd9df50f22ccf65cf27eddc0403791116c75a
+ NOTE: template is affected, so dependencies need a rebuild
CVE-2019-2211 (In createProjectionMapForQuery of TvProvider.java, there is possible S ...)
NOT-FOR-US: Android
CVE-2019-2210 (In load_logging_config of qmi_vs_service.cc, there is a possible out o ...)
@@ -185249,7 +185252,6 @@ CVE-2016-2775 (ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x
NOTE: https://kb.isc.org/article/AA-01393/74/CVE-2016-2775
CVE-2016-2774 (ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 doe ...)
- isc-dhcp 4.3.4-1 (bug #817158)
- [jessie] - isc-dhcp <no-dsa> (Minor issue)
[wheezy] - isc-dhcp <no-dsa> (Minor issue)
NOTE: https://kb.isc.org/article/AA-01354
NOTE: https://source.isc.org/cgi-bin/gitweb.cgi?p=dhcp.git;a=commitdiff;h=0b209ea5cc333255e055113fa2ad636dda681a21
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/0d0e809fb7da3f780764f2e4020f408395a53da8...5c3bde3a64fea9ffe8887d055053f90385bdcc29
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/0d0e809fb7da3f780764f2e4020f408395a53da8...5c3bde3a64fea9ffe8887d055053f90385bdcc29
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191124/84c10363/attachment.html>
More information about the debian-security-tracker-commits
mailing list