[Secure-testing-commits] r37984 - data/CVE

Scott Kitterman Mon, 30 Nov 2015 08:46:26 -0800

Author: kitterman
Date: 2015-11-30 16:44:56 +0000 (Mon, 30 Nov 2015)
New Revision: 37984


Modified:
   data/CVE/list
Log:
Mark CVE-2015-6360 as not affecting any releases as the vulnerable code is only 
present in the srtp 1.5 branch which is already fixed in experimental.

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-11-30 16:39:16 UTC (rev 37983)
+++ data/CVE/list       2015-11-30 16:44:56 UTC (rev 37984)
@@ -5239,12 +5239,15 @@
 CVE-2015-6360
        RESERVED
        [experimental] - srtp 1.5.3~dfsg-1
-       - srtp <unfixed>
+       [sid] - srtp <not-affected> (Vulnerable code not present)
+       [stretch] - srtp <not-affected> (Vulnerable code not present)
+       [jessie] - srtp <not-affected> (Vulnerable code not present)
+       [wheezy] - srtp <not-affected> (Vulnerable code not present)
+       [squeeze] - srtp <not-affected> (Vulnerable code not present)
        NOTE: 
https://github.com/cisco/libsrtp/commit/704a31774db0dd941094fd2b47c21638b8dc3de2
        NOTE: 
https://github.com/cisco/libsrtp/commit/be95365fbb4788b688cab7af61c65b7989055fb4
        NOTE: 
https://github.com/cisco/libsrtp/commit/cdc69f2acde796a4152a250f869271298abc233f
        NOTE: 
https://github.com/cisco/libsrtp/commit/be06686c8e98cc7bd934e10abb6f5e971d03f8ee
-       TODO: check details
 CVE-2015-6359
        RESERVED
 CVE-2015-6358


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r37984 - data/CVE

Reply via email to