[Git][security-tracker-team/security-tracker][master] 3 commits: Remove no-dsa tagged entries which got an update

Wed, 06 Feb 2019 13:05:56 -0800 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
7b7cccd4 by Salvatore Bonaccorso at 2019-02-06T20:53:35Z
Remove no-dsa tagged entries which got an update

- - - - -
a0460427 by Salvatore Bonaccorso at 2019-02-06T21:04:20Z
Mark CVE-2018-16888/systemd as no-dsa

- - - - -
83383aee by Salvatore Bonaccorso at 2019-02-06T21:05:03Z
Merge remote-tracking branch 'origin/master'

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25995,6 +25995,7 @@ CVE-2018-16889 (Ceph does not properly sanitize 
encryption keys in debug logging
        NOTE: 
https://github.com/ceph/ceph/commit/ba55e2a96c9dfcc7aa2311431beaaa23cb05c30d
 CVE-2018-16888 (It was discovered systemd does not correctly check the content 
of ...)
        - systemd 237-1
+       [stretch] - systemd <no-dsa> (Minor issue)
        [jessie] - systemd <no-dsa> (low priority because this is inherently a 
bug in the PID file logic)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1662867
        NOTE: Upstream issue: https://github.com/systemd/systemd/issues/6632
@@ -136656,7 +136657,6 @@ CVE-2016-5699 (CRLF injection vulnerability in the 
HTTPConnection.putheader func
        {DLA-522-1}
        - python3.5 <not-affected> (Fixed with initial upload to Debian)
        - python3.4 3.4.4~rc1-1
-       [jessie] - python3.4 <no-dsa> (Will be fixed via a point release)
        - python2.7 2.7.10~rc1-1
        [jessie] - python2.7 2.7.9-2+deb8u1
        NOTE: https://bugs.python.org/issue22928
@@ -137228,7 +137228,6 @@ CVE-2016-5636 (Integer overflow in the get_data 
function in zipimport.c in CPyth
        {DLA-522-1}
        - python3.5 3.5.2~rc1-1
        - python3.4 <removed>
-       [jessie] - python3.4 <no-dsa> (Will be fixed via a point release)
        - python2.7 2.7.12~rc1-1
        [jessie] - python2.7 2.7.9-2+deb8u1
        NOTE: https://bugs.python.org/issue26171
@@ -153093,7 +153092,6 @@ CVE-2016-0772 (The smtplib library in CPython (aka 
Python) before 2.7.12, 3.x be
        {DLA-871-1 DLA-522-1}
        - python3.5 3.5.2~rc1-1
        - python3.4 <removed>
-       [jessie] - python3.4 <no-dsa> (Will be fixed via a point release)
        - python3.2 <removed>
        - python2.7 2.7.12~rc1-1
        [jessie] - python2.7 2.7.9-2+deb8u1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/compare/c298d18e5deae14f41ef87a2e7ea17490c47cec4...83383aee0c9e998ee21f12611d4fed3bc9eb35ff

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/compare/c298d18e5deae14f41ef87a2e7ea17490c47cec4...83383aee0c9e998ee21f12611d4fed3bc9eb35ff
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to