Author: carnil
Date: 2016-02-29 21:36:48 +0000 (Mon, 29 Feb 2016)
New Revision: 40076
Modified:
data/CVE/list
Log:
Mark CVE-2016-1544/nghttp2 as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-29 21:34:21 UTC (rev 40075)
+++ data/CVE/list 2016-02-29 21:36:48 UTC (rev 40076)
@@ -3408,6 +3408,7 @@
CVE-2016-1544 [out of memory error due to unlimited incoming HTTP header
fields]
RESERVED
- nghttp2 1.7.1-1
+ [jessie] - nghttp2 <no-dsa> (Minor issue)
NOTE: Fix spread across multiple commits:
https://github.com/tatsuhiro-t/nghttp2/compare/v1.7.0...v1.7.1
NOTE: Commits between 1.7.0 and 1.7.1 seem almost limited to this
issue, cf.
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1308461#c3
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
