[Secure-testing-commits] r57982 - in data: . CVE DSA

Moritz Muehlenhoff Thu, 23 Nov 2017 14:05:27 -0800

Author: jmm
Date: 2017-11-23 22:05:10 +0000 (Thu, 23 Nov 2017)
New Revision: 57982


Modified:
   data/CVE/list
   data/DSA/list
   data/dsa-needed.txt
Log:
otrs, openjdk-7 DSA


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-11-23 21:47:29 UTC (rev 57981)
+++ data/CVE/list       2017-11-23 22:05:10 UTC (rev 57982)
@@ -3353,6 +3353,7 @@
        - frr <itp> (bug #863249)
 CVE-2017-15864 (In the Agent Frontend in Open Ticket Request System (OTRS) 
3.3.x ...)
        - otrs2 4.0.7-2
+       [jessie] - otrs2 3.3.18-1+deb8u2
        NOTE: 
https://www.otrs.com/security-advisory-2017-06-security-update-otrs-3-3/
        NOTE: 
https://github.com/OTRS/otrs/compare/3bc58ebeb9bdbe8107251a03cf7b9b8cfc515f53...80a0a9a138278d63a2621d146eb3c29e982aa2d5
        NOTE: Root cause for the issue is the recursive parsing handling in the 
old

Modified: data/DSA/list
===================================================================
--- data/DSA/list       2017-11-23 21:47:29 UTC (rev 57981)
+++ data/DSA/list       2017-11-23 22:05:10 UTC (rev 57982)
@@ -1,3 +1,10 @@
+[23 Nov 2017] DSA-4048-1 openjdk-7 - security update
+       {CVE-2017-10274 CVE-2017-10281 CVE-2017-10285 CVE-2017-10295 
CVE-2017-10345 CVE-2017-10346 CVE-2017-10347 CVE-2017-10348 CVE-2017-10349 
CVE-2017-10350 CVE-2017-10355 CVE-2017-10356 CVE-2017-10357 CVE-2017-10388}
+       [jessie] - openjdk-7 7u151-2.6.11-2~deb8u1
+[23 Nov 2017] DSA-4047-1 otrs2 - security update
+       {CVE-2017-16664}
+       [jessie] - otrs2 3.3.18-1+deb8u2
+       [stretch] - otrs2 5.0.16-1+deb9u3
 [22 Nov 2017] DSA-4046-1 libspring-ldap-java - security update
        {CVE-2017-8028}
        [jessie] - libspring-ldap-java 1.3.1.RELEASE-5+deb8u1

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2017-11-23 21:47:29 UTC (rev 57981)
+++ data/dsa-needed.txt 2017-11-23 22:05:10 UTC (rev 57982)
@@ -29,10 +29,6 @@
   due to new dependency being introduced
   Important: original fix would introduce a regression (needs fix upstream)
 --
-openjdk-7/oldstable (jmm)
---
-otrs2 (jmm)
---
 php-horde-image
 --
 php5


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r57982 - in data: . CVE DSA

Reply via email to