[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] The CVE was marked as no-dsa for Debian Security and there is no reason to…

Ola Lundqvist Thu, 12 Apr 2018 13:00:32 -0700

Ola Lundqvist pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ecc3fcae by Ola Lundqvist at 2018-04-12T21:59:31+02:00
The CVE was marked as no-dsa for Debian Security and there is no reason to 
believe why wheezy should be treated differently. Therefore marking as ignored 
and removing the package from dla-needed.txt.

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -6510,6 +6510,7 @@ CVE-2012-6709 (ELinks 0.12 and Twibright Links 2.3 have 
Missing SSL Certificate 
        - elinks <unfixed> (low; bug #891575)
        [stretch] - elinks <ignored> (Minor issue)
        [jessie] - elinks <ignored> (Minor issue)
+       [wheezy] - elinks <ignored> (Minor issue)
        - links2 2.6-1 (bug #694658; bug #510417)
        NOTE: Patch proposed upstream (when using): 
http://lists.linuxfromscratch.org/pipermail/elinks-dev/2015-June/002099.html
        NOTE: tested links2 against badssl.com, no apparent issue back in wheezy


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -21,9 +21,6 @@ calibre
 cups
   NOTE: 20180318: not clear whether patch is fine, so no email to maintainer 
sent
 --
-elinks
-  NOTE: 20180226: maintainer is on the security team (jmm), no notice sent 
(anarcat)
---
 firebird2.5
   NOTE: 20180411: no fix available upstream for CVE-2017-11509
   NOTE: 20180412: see 
<capv8svxahya2kssyvztahsb7fk9cfvewhsuo5qhdxvr3uf2...@mail.gmail.com> (lamby)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ecc3fcae4e8db5ac6caa4a700cde97ab7ae23569

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ecc3fcae4e8db5ac6caa4a700cde97ab7ae23569
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] The CVE was marked as no-dsa for Debian Security and there is no reason to…

Reply via email to