[Git][security-tracker-team/security-tracker][master] 2 commits: will be fixed in next upload

Thorsten Alteholz alteholz at debian.org
Mon Nov 25 21:19:04 GMT 2019 


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
44bbf625 by Thorsten Alteholz at 2019-11-25T21:18:36Z
will be fixed in next upload

- - - - -
1ede62fd by Thorsten Alteholz at 2019-11-25T21:18:36Z
Reserve DLA-2006-1 for libxdmcp

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -157350,7 +157350,6 @@ CVE-2017-2626 (It was discovered that libICE before 1.0.9-8 used a weak entropy
 	NOTE: https://www.x41-dsec.de/lab/advisories/x41-2017-001-xorg/
 CVE-2017-2625 (It was discovered that libXdmcp before 1.1.2 including used weak entro ...)
 	- libxdmcp 1:1.1.2-2 (bug #856399)
-	[jessie] - libxdmcp <no-dsa> (Minor issue, can be fixed in a point update or next DSA)
 	[wheezy] - libxdmcp <no-dsa> (Minor issue, can be fixed in a point update or next DSA)
 	NOTE: https://www.x41-dsec.de/lab/advisories/x41-2017-001-xorg/
 CVE-2017-2624 (It was found that xorg-x11-server before 1.19.0 including uses memcmp( ...)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[25 Nov 2019] DLA-2006-1 libxdmcp - security update
+	{CVE-2017-2625}
+	[jessie] - libxdmcp 1:1.1.1-1+deb8u1
 [25 Nov 2019] DLA-2005-1 tnef - security update
 	{CVE-2019-18849}
 	[jessie] - tnef 1.4.9-1+deb8u4



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/784db04a299e642de50f069b83e2e9cbb1141f8e...1ede62fd20a58cd21a4aff2eddfbf0719b5747c7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/784db04a299e642de50f069b83e2e9cbb1141f8e...1ede62fd20a58cd21a4aff2eddfbf0719b5747c7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191125/5ab4cecf/attachment.html>

More information about the debian-security-tracker-commits mailing list