Author: carnil Date: 2017-11-20 20:59:32 +0000 (Mon, 20 Nov 2017) New Revision: 57867
Modified: data/CVE/list Log: Mark busybox issues as no-dsa for stretch and jessie Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-11-20 20:28:50 UTC (rev 57866) +++ data/CVE/list 2017-11-20 20:59:32 UTC (rev 57867) @@ -1252,6 +1252,8 @@ CVE-2017-16544 [missing terminal escape sequence filtering in autocompletion] RESERVED - busybox <unfixed> (bug #882258) + [stretch] - busybox <no-dsa> (Minor issue, can be fixed via point release) + [jessie] - busybox <no-dsa> (Minor issue, can be fixed via point release) NOTE: https://www.twistlock.com/2017/11/20/cve-2017-16544-busybox-autocompletion-vulnerability/ NOTE: https://git.busybox.net/busybox/commit/?id=c3797d40a1c57352192c6106cc0f435e7d9c11e8 CVE-2017-16543 (Zoho ManageEngine Applications Manager 13 allows SQL injection via ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits