Author: jmm Date: 2017-03-21 09:57:26 +0000 (Tue, 21 Mar 2017) New Revision: 49874
Modified: data/CVE/list Log: jhead fixed apache POI no-dsa Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-03-21 09:50:22 UTC (rev 49873) +++ data/CVE/list 2017-03-21 09:57:26 UTC (rev 49874) @@ -4102,6 +4102,7 @@ CVE-2017-5644 [denial-of-service] RESERVED - libapache-poi-java <unfixed> (bug #858301) + [jessie] - libapache-poi-java <no-dsa> (Minor issue) NOTE: http://www.openwall.com/lists/oss-security/2017/03/20/9 CVE-2017-5643 (Apache Camel's Validation Component is vulnerable against SSRF via ...) NOT-FOR-US: Apache Camel @@ -37340,7 +37341,7 @@ CVE-2016-3823 (The secure-session feature in the mm-video-v4l2 venc component in ...) NOT-FOR-US: Android CVE-2016-3822 (exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android ...) - - jhead <unfixed> (bug #858213) + - jhead 1:3.00-4 (bug #858213) CVE-2016-3821 (libmedia in mediaserver in Android 4.x before 4.4.4, 5.0.x before ...) NOT-FOR-US: Android Mediaserver CVE-2016-3820 (The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits