Author: apo
Date: 2017-01-22 20:50:48 +0000 (Sun, 22 Jan 2017)
New Revision: 48285
Modified:
data/CVE/list
Log:
CVE-2016-5537, netbeans: Mark as no-dsa
Backporting Netbeans 8.2 is too intrusive and we have no information about the
affected code thus we cannot prepare a targeted fix.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-22 19:09:48 UTC (rev 48284)
+++ data/CVE/list 2017-01-22 20:50:48 UTC (rev 48285)
@@ -26331,6 +26331,7 @@
[wheezy] - virtualbox <end-of-life> (DSA 3454)
CVE-2016-5537 (Unspecified vulnerability in the NetBeans component in Oracle
Fusion ...)
- netbeans <unfixed> (bug #852029)
+ [wheezy] - netbeans <no-dsa> (No details about affected code, backport
of Netbeans 8.2 too intrusive)
CVE-2016-5536 (Unspecified vulnerability in the Oracle Platform Security for
Java ...)
NOT-FOR-US: Oracle
CVE-2016-5535 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
