diff options
| author | Markus Koschany <apo@debian.org> | 2021-02-15 12:03:35 +0100 |
|---|---|---|
| committer | Markus Koschany <apo@debian.org> | 2021-02-15 12:04:28 +0100 |
| commit | 7eb8e14f65e17b32bad77da0db6c70be706c0473 (patch) | |
| tree | 08b4f7a0c5a6f8a9014a4b5d298ef95d4e3daecc | |
| parent | 6aa0e14d0ae11ebf7f118954193630e82d485e87 (diff) | |
Remove no-dsa tags for upcoming busybox update in Stretch.
| -rw-r--r-- | data/CVE/2011.list | 1 | ||||
| -rw-r--r-- | data/CVE/2015.list | 1 | ||||
| -rw-r--r-- | data/CVE/2016.list | 2 | ||||
| -rw-r--r-- | data/CVE/2017.list | 2 | ||||
| -rw-r--r-- | data/CVE/2018.list | 1 |
5 files changed, 0 insertions, 7 deletions
diff --git a/data/CVE/2011.list b/data/CVE/2011.list index 1e53781cc6..ee97c0f9f6 100644 --- a/data/CVE/2011.list +++ b/data/CVE/2011.list @@ -17,7 +17,6 @@ CVE-2011-5326 (imlib2 before 1.4.9 allows remote attackers to cause a denial of CVE-2011-5325 (Directory traversal vulnerability in the BusyBox implementation of tar ...) {DLA-1445-1} - busybox 1:1.27.2-1 (bug #802702) - [stretch] - busybox <no-dsa> (Minor issue) [wheezy] - busybox <no-dsa> (Minor issue) [squeeze] - busybox <no-dsa> (Minor issue) CVE-2011-5324 (The TeraRecon server, as used in GE Healthcare Centricity PACS-IW 3.7. ...) diff --git a/data/CVE/2015.list b/data/CVE/2015.list index 34dbd50619..0402a0c9c7 100644 --- a/data/CVE/2015.list +++ b/data/CVE/2015.list @@ -5007,7 +5007,6 @@ CVE-2015-7944 (The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti CVE-2015-9261 (huft_build in archival/libarchive/decompress_gunzip.c in BusyBox befor ...) {DLA-1445-1 DLA-337-1} - busybox 1:1.27.2-1 (bug #803097) - [stretch] - busybox <no-dsa> (Minor issue) NOTE: https://www.openwall.com/lists/oss-security/2015/10/25/3 NOTE: http://git.busybox.net/busybox/commit/?id=1de25a6e87e0e627aa34298105a3d17c60a1f44e NOTE: https://git.busybox.net/busybox/commit/archival/libarchive/decompress_gunzip.c?id=6bd3fff51aa74e2ee2d87887b12182a3b09792ef diff --git a/data/CVE/2016.list b/data/CVE/2016.list index 8aba38569f..b01c449cd3 100644 --- a/data/CVE/2016.list +++ b/data/CVE/2016.list @@ -26760,13 +26760,11 @@ CVE-2016-2149 (Red Hat OpenShift Enterprise 3.2 allows remote authenticated user CVE-2016-2148 (Heap-based buffer overflow in the DHCP client (udhcpc) in BusyBox befo ...) {DLA-1445-1} - busybox 1:1.27.2-1 (bug #818497) - [stretch] - busybox <no-dsa> (Minor issue) [wheezy] - busybox <no-dsa> (Minor issue) NOTE: https://git.busybox.net/busybox/commit/?id=352f79acbd759c14399e39baef21fc4ffe180ac2 CVE-2016-2147 (Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 ...) {DLA-1445-1} - busybox 1:1.27.2-1 (bug #818499) - [stretch] - busybox <no-dsa> (Minor issue) [wheezy] - busybox <no-dsa> (Minor issue) NOTE: https://git.busybox.net/busybox/commit/?id=d474ffc68290e0a83651c4432eeabfa62cd51e87 CVE-2016-2146 (The am_read_post_data function in mod_auth_mellon before 0.11.1 does n ...) diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 5079ee5164..ece82e5c55 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -7004,7 +7004,6 @@ CVE-2017-16545 (The ReadWPGImage function in coders/wpg.c in GraphicsMagick 1.3. CVE-2017-16544 (In the add_match function in libbb/lineedit.c in BusyBox through 1.27. ...) {DLA-1445-1} - busybox 1:1.27.2-2 (bug #882258) - [stretch] - busybox <no-dsa> (Minor issue, can be fixed via point release) [wheezy] - busybox <no-dsa> (Minor issue) NOTE: https://www.twistlock.com/2017/11/20/cve-2017-16544-busybox-autocompletion-vulnerability/ NOTE: https://git.busybox.net/busybox/commit/?id=c3797d40a1c57352192c6106cc0f435e7d9c11e8 @@ -8678,7 +8677,6 @@ CVE-2017-15874 (archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an CVE-2017-15873 (The get_next_block function in archival/libarchive/decompress_bunzip2. ...) {DLA-1445-1} - busybox 1:1.27.2-2 (bug #879732) - [stretch] - busybox <no-dsa> (Minor issue) [wheezy] - busybox <no-dsa> (Minor issue) NOTE: Fixed by: https://git.busybox.net/busybox/commit/?id=0402cb32df015d9372578e3db27db47b33d5c7b0 NOTE: https://bugs.busybox.net/show_bug.cgi?id=10431 diff --git a/data/CVE/2018.list b/data/CVE/2018.list index b20248688f..c95f834ab4 100644 --- a/data/CVE/2018.list +++ b/data/CVE/2018.list @@ -22709,7 +22709,6 @@ CVE-2018-1000518 (aaugustin websockets version 4 contains a CWE-409: Improper Ha CVE-2018-1000517 (BusyBox project BusyBox wget version prior to commit 8e2174e9bd836e53c ...) {DLA-1445-1} - busybox 1:1.27.2-3 (low; bug #902724) - [stretch] - busybox <no-dsa> (Minor issue; can be fixed via point release) NOTE: https://git.busybox.net/busybox/commit/?id=8e2174e9bd836e53c8b9c6e00d1bc6e2a718686e CVE-2018-1000516 (The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper N ...) NOT-FOR-US: Galaxy Project Galaxy |