Author: apo
Date: 2016-11-18 17:21:52 +0000 (Fri, 18 Nov 2016)
New Revision: 46326
Modified:
data/CVE/list
Log:
Mark CVE-2016-1249, libdbd-mysql-perl as no-dsa for Wheezy
because "this problem is only exposed when the user uses server-side prepared
statement support, which is NOT default behavior"
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-18 16:56:51 UTC (rev 46325)
+++ data/CVE/list 2016-11-18 17:21:52 UTC (rev 46326)
@@ -27012,6 +27012,7 @@
RESERVED
- libdbd-mysql-perl 4.039-1 (bug #844475)
[jessie] - libdbd-mysql-perl <no-dsa> (Minor issue)
+ [wheezy] - libdbd-mysql-perl <no-dsa> (Minor issue)
NOTE:
https://github.com/perl5-dbi/DBD-mysql/commit/793b72b1a0baa5070adacaac0e12fd995a6fbabe
(4.039)
NOTE: http://www.openwall.com/lists/oss-security/2016/11/16/1
CVE-2016-1248
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
