Author: carnil
Date: 2017-01-11 19:50:26 +0000 (Wed, 11 Jan 2017)
New Revision: 47919
Modified:
data/CVE/list
data/next-point-update.txt
Log:
A DSA will be issued for ikiwiki, cleanup entries for jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-11 19:41:17 UTC (rev 47918)
+++ data/CVE/list 2017-01-11 19:50:26 UTC (rev 47919)
@@ -3441,7 +3441,6 @@
CVE-2016-10026 [authorization bypass when reverting changes]
RESERVED
- ikiwiki 3.20161219
- [jessie] - ikiwiki <no-dsa> (Minor issue)
NOTE:
http://ikiwiki.info/bugs/rcs_revert_can_bypass_authorization_if_affected_files_were_renamed/
NOTE: Fix:
http://source.ikiwiki.branchable.com/?p=source.git;a=commitdiff;h=9cada49ed6ad24556dbe9861ad5b0a9f526167f9
NOTE: http://www.openwall.com/lists/oss-security/2016/12/20/7
@@ -11585,7 +11584,6 @@
CVE-2016-9646 [commit metadata forgery]
RESERVED
- ikiwiki 3.20161229
- [jessie] - ikiwiki <no-dsa> (Minor issue)
NOTE: https://ikiwiki.info/security/#cve-2016-9646
CVE-2016-9643
RESERVED
Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt 2017-01-11 19:41:17 UTC (rev 47918)
+++ data/next-point-update.txt 2017-01-11 19:50:26 UTC (rev 47919)
@@ -196,10 +196,6 @@
CVE-2017-XXXX [w3m]
[jessie] - w3m 0.5.3-19+deb8u2
NOTE: For #850432
-CVE-2016-9646
- [jessie] - ikiwiki 3.20141016.4
-CVE-2016-10026
- [jessie] - ikiwiki 3.20141016.4
CVE-2016-6494
[jessie] - mongodb 1:2.4.10-5+deb8u1
CVE-2016-XXXX [mongodb]
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
