[Secure-testing-commits] r5441 - data/CVE
Stefan Fritsch
stef-guest at alioth.debian.org
Sun Feb 11 21:12:43 UTC 2007
Author: stef-guest
Date: 2007-02-11 22:12:40 +0100 (Sun, 11 Feb 2007)
New Revision: 5441
Modified:
data/CVE/list
Log:
fix typo
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-02-11 21:08:25 UTC (rev 5440)
+++ data/CVE/list 2007-02-11 21:12:40 UTC (rev 5441)
@@ -15,7 +15,7 @@
NOT-FOR-US: Trend Micro Anti-Rootkit Common Module
CVE-2007-0855 (Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR ...)
- rar <unfixed> (high)
- - unrar-nonfree <unfixed> (high) (bug filed)
+ - unrar-nonfree <unfixed> (high; bug filed)
NOTE: amavid-new automatically uses "rar -p-" or "unrar -p-",
NOTE: which probably turns this into remote code execution
NOTE: clamav can also call unrar -p-, but AFAICS not in default configuration
More information about the Secure-testing-commits
mailing list