Author: hertzog Date: 2016-11-25 10:01:27 +0000 (Fri, 25 Nov 2016) New Revision: 46530
Modified: data/dla-needed.txt Log: Drop libass from dla-needed.txt The CVE is disputed and has been marked unimportant in the mean time. Modified: data/dla-needed.txt =================================================================== --- data/dla-needed.txt 2016-11-25 09:10:13 UTC (rev 46529) +++ data/dla-needed.txt 2016-11-25 10:01:27 UTC (rev 46530) @@ -38,11 +38,6 @@ -- jasper (Thorsten Alteholz) -- -libass - NOTE: 20161019: CVE-2016-7971 is disputed upstream. No patch available yet. - NOTE: 20161026: CVE-2016-7971 is not only disputed upstream but the reporter also confirm that the - NOTE: problem is in the application using libass4 rather than in libass4 itself. --- libav (Hugo Lefeuvre) NOTE: Upstream should provide new point-releases fixing open security issues in the next months. NOTE: Lots of CVEs are open, this is going to take some time. (See debian-lts ML) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits