Author: carnil
Date: 2017-07-25 04:36:49 +0000 (Tue, 25 Jul 2017)
New Revision: 53879
Modified:
data/CVE/list
Log:
Mark libsass issues as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-25 04:29:54 UTC (rev 53878)
+++ data/CVE/list 2017-07-25 04:36:49 UTC (rev 53879)
@@ -6,6 +6,7 @@
RESERVED
CVE-2017-11608 (There is a heap-based buffer over-read in the ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1474276
CVE-2017-11607
RESERVED
@@ -13,6 +14,7 @@
RESERVED
CVE-2017-11605 (There is a heap based buffer over-read in LibSass 3.4.5,
related to ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1474019
CVE-2017-11604
RESERVED
@@ -130,12 +132,15 @@
RESERVED
CVE-2017-11556 (There is a stack consumption vulnerability in the ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2447
CVE-2017-11555 (There is an illegal address access in the Eval::operator
function in ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2446
CVE-2017-11554 (There is a stack consumption vulnerability in the lex function
in ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2445
CVE-2017-11553 (There is an illegal address access in the extend_alias_table
function ...)
- exiv2 <unfixed>
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
