Author: jmm
Date: 2015-06-04 08:40:45 +0000 (Thu, 04 Jun 2015)
New Revision: 34713
Modified:
data/CVE/list
Log:
nghttp2 unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-06-04 07:41:45 UTC (rev 34712)
+++ data/CVE/list 2015-06-04 08:40:45 UTC (rev 34713)
@@ -1,9 +1,9 @@
CVE-2015-XXXX [Null pointer access in inflatehd tool]
- - nghttp2 <unfixed>
+ - nghttp2 <unfixed> (unimportant)
NOTE: Upstream report: https://github.com/tatsuhiro-t/nghttp2/issues/235
NOTE: Git commit:
https://github.com/tatsuhiro-t/nghttp2/commit/3572e7c6343cb85fc21f5667a7ed0902cf5305cf
NOTE: CVE Request:
http://www.openwall.com/lists/oss-security/2015/06/03/20
- TODO: check
+ NOTE: inflatehd not installed into the Debian binary packages
CVE-2015-XXXX [heap-buffer-overflow]
- tidy <unfixed>
NOTE: https://github.com/htacg/tidy-html5/issues/217
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
