DSA-1576-1: Do not mark openssh as vulnerable

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@9094 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: Florian Weimer <fw@deneb.enyo.de> 2008-06-17 19:53:04 +0000
committer: Florian Weimer <fw@deneb.enyo.de> 2008-06-17 19:53:04 +0000
commit: b3e09d71d6acb27c5c9312eee0388748f3b28a77 (patch)
tree: 660f16699099ceebd17fb76d19b57f65e080ea44 /data
parent: f1f12a8a43b7f3a8e3c9965629ab3da777868c2a (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/DSA/list b/data/DSA/list
index fe78299fea..e718e51b7a 100644
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -65,7 +65,9 @@
 	[etch] - gforge 4.5.14-22etch8
 [14 May 2008] DSA-1576-1 openssh openssh-blacklist - predictable randomness
 	{CVE-2007-4752 CVE-2008-0166 CVE-2008-1483 CVE-2008-2285}
-	[etch] - openssh 1:4.3p2-9etch2
+	NOTE: [etch] - openssh 1:4.3p2-9etch2
+	NOTE: The package should not be flagged as vulnerable because this is just
+	NOTE: a band-aid for DSA-1571-1.
 [12 May 2008] DSA-1575-1 linux-2.6 - denial of service
 	{CVE-2008-1669}
 	[etch] - linux-2.6 2.6.18.dfsg.1-18etch4
author	Florian Weimer <fw@deneb.enyo.de>	2008-06-17 19:53:04 +0000
committer	Florian Weimer <fw@deneb.enyo.de>	2008-06-17 19:53:04 +0000
commit	b3e09d71d6acb27c5c9312eee0388748f3b28a77 (patch)
tree	660f16699099ceebd17fb76d19b57f65e080ea44 /data
parent	f1f12a8a43b7f3a8e3c9965629ab3da777868c2a (diff)