Author: apo Date: 2016-04-19 17:00:37 +0000 (Tue, 19 Apr 2016) New Revision: 40998
Modified: data/CVE/list Log: Mark CVE-2016-0737 and CVE-2016-0738 as <not-affected> in Wheezy. Vulnerable code not present. Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-04-19 16:58:17 UTC (rev 40997) +++ data/CVE/list 2016-04-19 17:00:37 UTC (rev 40998) @@ -10077,10 +10077,12 @@ NOTE: Upstream fix: https://git.libssh.org/projects/libssh.git/commit/?h=v0-7&id=f8d0026c65fc8a55748ae481758e2cf376c26c86 CVE-2016-0738 (OpenStack Object Storage (Swift) before 2.3.1 (Kilo), 2.4.x, and 2.5.x ...) - swift 2.5.0-3 (bug #812984) + [wheezy] - swift <not-affected> (Vulnerable code not present) NOTE: Swift: >=2.2.1 <= 2.3.0, >= 2.4.0 <= 2.5.0 TODO: check CVE-2016-0737 (OpenStack Object Storage (Swift) before 2.4.0 does not properly close ...) - swift 2.4.0-1 + [wheezy] - swift <not-affected> (Vulnerable code not present) NOTE: Swift: >=2.2.1 <= 2.3.0 TODO: check, not exaclty clear if it really only was introduced in 2.2.1 CVE-2016-0736 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits