Author: agx
Date: 2017-06-23 11:04:46 +0000 (Fri, 23 Jun 2017)
New Revision: 52840
Modified:
data/CVE/list
Log:
lts: mark CVE-2017-8379 no-dsa
The input code is different in wheezy so it's not worth the risk.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-23 11:04:36 UTC (rev 52839)
+++ data/CVE/list 2017-06-23 11:04:46 UTC (rev 52840)
@@ -5308,7 +5308,9 @@
CVE-2017-8379 (Memory leak in the keyboard input event handlers support in
QEMU (aka ...)
- qemu 1:2.8+dfsg-5 (bug #862289)
[jessie] - qemu <no-dsa> (Minor issue)
+ [wheezy] - qemu <no-dsa> (Minor issue)
- qemu-kvm <removed>
+ [wheezy] - qemu-kvm <no-dsa> (Minor issue)
NOTE: Fixed by:
http://git.qemu.org/?p=qemu.git;a=commit;h=fa18f36a461984eae50ab957e47ec78dae3c14fc
CVE-2017-8378 (Heap-based buffer overflow in the PdfParser::ReadObjects
function in ...)
- libpodofo <unfixed> (bug #861597)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
