[Git][security-tracker-team/security-tracker][master] 2 commits: DLA-1714-2: Sort suite entries after CVE entires

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f2208944 by Salvatore Bonaccorso at 2021-10-31T08:39:22+01:00
DLA-1714-2: Sort suite entries after CVE entires

Fixes: 78ed519db812 ("DLA-1714-2 fixed CVE-2017-2888")

- - - - -
acd002c4 by Salvatore Bonaccorso at 2021-10-31T08:40:01+01:00
Remove no-dsa tagged entries for stretch for CVE-2017-2888

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -295194,7 +295194,6 @@ CVE-2017-2889 (An exploitable Denial of Service vulnerability exists in the API
 	NOT-FOR-US: Circle with Disney
 CVE-2017-2888 (An exploitable integer overflow vulnerability exists when creating a n ...)
 	- libsdl2 2.0.6+dfsg1-4 (bug #878264)
-	[stretch] - libsdl2 <no-dsa> (Minor issue)
 	[jessie] - libsdl2 <no-dsa> (Minor issue)
 	- libsdl1.2 <not-affected> (Issue not present, SDL_CreateRGBSurface contains further check for too large width or height)
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0395


=====================================
data/DLA/list
=====================================
@@ -2581,8 +2581,8 @@
 	{CVE-2019-14464 CVE-2019-14496 CVE-2019-14497}
 	[jessie] - milkytracker 0.90.85+dfsg-2.2+deb8u1
 [16 Oct 2019] DLA-1714-2 libsdl2 - regression update
-	[jessie] - libsdl2 2.0.2+dfsg1-6+deb8u2
 	{CVE-2017-2888}
+	[jessie] - libsdl2 2.0.2+dfsg1-6+deb8u2
 [16 Oct 2019] DLA-1960-1 wordpress - security update
 	{CVE-2019-16217 CVE-2019-16218 CVE-2019-16219 CVE-2019-16220 CVE-2019-16221 CVE-2019-16222 CVE-2019-16223}
 	[jessie] - wordpress 4.1.27+dfsg-0+deb8u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/78ed519db812255dc0439d6294f641ecee9819e1...acd002c445df023a81769ace260c915dfca7df33

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/78ed519db812255dc0439d6294f641ecee9819e1...acd002c445df023a81769ace260c915dfca7df33
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211031/077a18a9/attachment.htm>