Author: jmm Date: 2016-09-22 07:57:51 +0000 (Thu, 22 Sep 2016) New Revision: 44820
Modified: data/CVE/list data/dsa-needed.txt Log: mark psql-9.1 n/a in jessie Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-09-22 07:26:05 UTC (rev 44819) +++ data/CVE/list 2016-09-22 07:57:51 UTC (rev 44820) @@ -8568,16 +8568,18 @@ - postgresql-9.5 9.5.4-1 - postgresql-9.4 <removed> - postgresql-9.1 <removed> - [jessie] - postgresql-9.1 <no-dsa> (postgresql-9.1 in jessie only provides PL/Perl) + [jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl) NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=fcd15f13581f6d75c63d213220d5a94889206c1b + NOTE: https://www.postgresql.org/about/news/1688/ CVE-2016-5423 [possible mis-evaluation of nested CASE-WHEN expressions] RESERVED {DSA-3646-1 DLA-592-1} - postgresql-9.5 9.5.4-1 - postgresql-9.4 <removed> - postgresql-9.1 <removed> - [jessie] - postgresql-9.1 <no-dsa> (postgresql-9.1 in jessie only provides PL/Perl) + [jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl) NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=f0c7b789ab12fbc8248b671c7882dd96ac932ef4 + NOTE: https://www.postgresql.org/about/news/1688/ CVE-2016-5422 (The web console in Red Hat JBoss Operations Network (JON) before 3.3.7 ...) NOT-FOR-US: Red Hat JBoss Operations Network CVE-2016-5421 (Use-after-free vulnerability in libcurl before 7.50.1 allows attackers ...) @@ -24340,7 +24342,7 @@ - postgresql-9.5 9.5.1-1 - postgresql-9.4 <unfixed> - postgresql-9.1 <removed> - [jessie] - postgresql-9.1 <no-dsa> (postgresql-9.1 in jessie only provides PL/Perl) + [jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl) NOTE: http://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=3bb3f42f3749d40b8d4de65871e8d828b18d4a45 CVE-2016-0772 (The smtplib library in CPython (aka Python) before 2.7.12, 3.x before ...) {DLA-522-1} @@ -24371,7 +24373,7 @@ - postgresql-9.5 9.5.1 - postgresql-9.4 <unfixed> - postgresql-9.1 <removed> - [jessie] - postgresql-9.1 <no-dsa> (postgresql-9.1 in jessie only provides PL/Perl) + [jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl) CVE-2016-0765 RESERVED CVE-2016-0764 [Race conditions that could disclose connection secrets to authenticated local users] @@ -35820,7 +35822,7 @@ {DSA-3475-1 DSA-3374-1 DLA-329-1} - postgresql-9.4 9.4.5-1 - postgresql-9.1 <removed> - [jessie] - postgresql-9.1 <no-dsa> (postgresql-9.1 in jessie only provides PL/Perl) + [jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl) - postgresql-8.4 <removed> [wheezy] - postgresql-8.4 <no-dsa> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream) [squeeze] - postgresql-8.4 <no-dsa> (minor issue) Modified: data/dsa-needed.txt =================================================================== --- data/dsa-needed.txt 2016-09-22 07:26:05 UTC (rev 44819) +++ data/dsa-needed.txt 2016-09-22 07:57:51 UTC (rev 44820) @@ -32,7 +32,6 @@ nss -- openssl - wait for next openssl update round -- php5 -- _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits