Author: rbalint Date: 2017-01-30 18:39:27 +0000 (Mon, 30 Jan 2017) New Revision: 48562
Modified: data/dla-needed.txt Log: Claim glassfish and ruby-archive-tar-minitar for DLA Modified: data/dla-needed.txt =================================================================== --- data/dla-needed.txt 2017-01-30 18:32:21 UTC (rev 48561) +++ data/dla-needed.txt 2017-01-30 18:39:27 UTC (rev 48562) @@ -21,7 +21,7 @@ NOTE: In particular, it seems likely that there are more undocumented but NOTE: public security issues in Calibre. See for example bug #853004. -- -glassfish +glassfish (Balint Reczey) NOTE: Needs further triaging as there is very little information on many of NOTE: the issues. However one of them looks like a major problem so the NOTE: package needs a DLA. @@ -91,7 +91,7 @@ NOTE: Upstream is not going to fix CVE-2016-8686 since it believes it is not NOTE: a bug (see #843861). -- -ruby-archive-tar-minitar +ruby-archive-tar-minitar (Balint Reczey) NOTE: Vulnerable code is in lib/archive/tar/minitar/command.rb -- slurm-llnl _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits