Author: carnil Date: 2017-06-04 13:34:24 +0000 (Sun, 04 Jun 2017) New Revision: 52284
Modified: data/CVE/list Log: Mark CVE-2017-5977 as no-dsa for jessie (following stretch) Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-06-04 13:34:14 UTC (rev 52283) +++ data/CVE/list 2017-06-04 13:34:24 UTC (rev 52284) @@ -9892,6 +9892,7 @@ CVE-2017-5977 (The zzip_mem_entry_extra_block function in memdisk.c in zziplib ...) - zziplib <unfixed> (bug #864150; bug #854727) [stretch] - zziplib <no-dsa> (Minor issue) + [jessie] - zziplib <no-dsa> (Minor issue) NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-invalid-memory-read-in-zzip_mem_entry_extra_block-memdisk-c/ CVE-2017-5976 (Heap-based buffer overflow in the zzip_mem_entry_extra_block function ...) - zziplib 0.13.62-3.1 (bug #854727) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits