Author: carnil Date: 2017-11-25 09:35:40 +0000 (Sat, 25 Nov 2017) New Revision: 58013
Modified: data/CVE/list Log: Mark CVE-2017-16879/ncurses as no-dsa Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-11-25 09:33:08 UTC (rev 58012) +++ data/CVE/list 2017-11-25 09:35:40 UTC (rev 58013) @@ -237,6 +237,8 @@ NOTE: Can't seem to reproduce this in wheezy. CVE-2017-16879 (Stack-based buffer overflow in the _nc_write_entry function in ...) - ncurses <unfixed> (bug #882620) + [stretch] - ncurses <no-dsa> (Minor issue) + [jessie] - ncurses <no-dsa> (Minor issue) NOTE: PoC https://packetstormsecurity.com/files/download/145045/tic-overflow.tgz CVE-2017-16878 RESERVED _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits