Author: carnil Date: 2017-07-25 04:36:49 +0000 (Tue, 25 Jul 2017) New Revision: 53879
Modified: data/CVE/list Log: Mark libsass issues as no-dsa Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-07-25 04:29:54 UTC (rev 53878) +++ data/CVE/list 2017-07-25 04:36:49 UTC (rev 53879) @@ -6,6 +6,7 @@ RESERVED CVE-2017-11608 (There is a heap-based buffer over-read in the ...) - libsass <unfixed> + [stretch] - libsass <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1474276 CVE-2017-11607 RESERVED @@ -13,6 +14,7 @@ RESERVED CVE-2017-11605 (There is a heap based buffer over-read in LibSass 3.4.5, related to ...) - libsass <unfixed> + [stretch] - libsass <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1474019 CVE-2017-11604 RESERVED @@ -130,12 +132,15 @@ RESERVED CVE-2017-11556 (There is a stack consumption vulnerability in the ...) - libsass <unfixed> + [stretch] - libsass <no-dsa> (Minor issue) NOTE: https://github.com/sass/libsass/issues/2447 CVE-2017-11555 (There is an illegal address access in the Eval::operator function in ...) - libsass <unfixed> + [stretch] - libsass <no-dsa> (Minor issue) NOTE: https://github.com/sass/libsass/issues/2446 CVE-2017-11554 (There is a stack consumption vulnerability in the lex function in ...) - libsass <unfixed> + [stretch] - libsass <no-dsa> (Minor issue) NOTE: https://github.com/sass/libsass/issues/2445 CVE-2017-11553 (There is an illegal address access in the extend_alias_table function ...) - exiv2 <unfixed> _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits