Author: rbalint
Date: 2017-01-06 01:04:11 +0000 (Fri, 06 Jan 2017)
New Revision: 47771
Modified:
data/CVE/list
data/dla-needed.txt
Log:
rabbitmq-server 2.x is not affected by CVE-2016-9877 in wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-05 23:49:38 UTC (rev 47770)
+++ data/CVE/list 2017-01-06 01:04:11 UTC (rev 47771)
@@ -4696,6 +4696,7 @@
NOTE: https://jira.spring.io/browse/SPR-14946
CVE-2016-9877 (An issue was discovered in Pivotal RabbitMQ 3.x before 3.5.8
and 3.6.x ...)
- rabbitmq-server 3.6.6-1 (bug #849849)
+ [wheezy] - rabbitmq-server <not-affected> (Vulnerable code introduced
later)
NOTE: https://pivotal.io/security/cve-2016-9877
NOTE: https://github.com/rabbitmq/rabbitmq-mqtt/issues/96
NOTE: https://github.com/rabbitmq/rabbitmq-mqtt/pull/98
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-01-05 23:49:38 UTC (rev 47770)
+++ data/dla-needed.txt 2017-01-06 01:04:11 UTC (rev 47771)
@@ -110,11 +110,6 @@
--
potrace
--
-rabbitmq-server (Balint Reczey)
- NOTE: It remains to investigate if this applies to the 2.x branch in
- NOTE: oldstable as well. It should as SSL support was added already in 1.x
- NOTE: branch.
---
tiff
NOTE: Please work in the git repo accessible to all DD (branch master-wheezy):
NOTE:
https://anonscm.debian.org/cgit/collab-maint/tiff.git/log/?id=refs/heads/master-wheezy
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
