Author: apo
Date: 2016-12-24 14:56:01 +0000 (Sat, 24 Dec 2016)
New Revision: 47407
Modified:
data/CVE/list
Log:
CVE-2016-9938,asterisk: Mark as no-dsa for Wheezy
Same reasoning as for Jessie. The issue is only applicable in special
environments and when a proxy is in use. This is not the default behavior in
Debian, so this issue is minor.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-24 14:53:37 UTC (rev 47406)
+++ data/CVE/list 2016-12-24 14:56:01 UTC (rev 47407)
@@ -725,6 +725,7 @@
CVE-2016-9938 (An issue was discovered in Asterisk Open Source 11.x before
11.25.1, ...)
- asterisk 1:13.13.1~dfsg-1 (bug #847668)
[jessie] - asterisk <no-dsa> (Minor issue)
+ [wheezy] - asterisk <no-dsa> (Minor issue)
NOTE: http://downloads.asterisk.org/pub/security/AST-2016-009.html
NOTE: Only applicable if a proxy is in use.
CVE-2016-9923 [char: use after free issue in char backend]
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
