[Secure-testing-commits] r7202 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Sun Nov 4 07:19:59 UTC 2007
Author: white
Date: 2007-11-04 07:19:58 +0000 (Sun, 04 Nov 2007)
New Revision: 7202
Modified:
data/CVE/list
Log:
cpio also has the vulnerable pax code, thus affected by CVE-2007-4476
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-11-03 10:31:03 UTC (rev 7201)
+++ data/CVE/list 2007-11-04 07:19:58 UTC (rev 7202)
@@ -3887,6 +3887,7 @@
NOT-FOR-US: Planet VC-200M VDSL2 router
CVE-2007-4476 (Buffer overflow in the safer_name_suffix function in GNU tar has ...)
- tar 1.18-1 (low; bug #441444)
+ - cpio <unfixed> (low; bug #449222)
CVE-2007-4475
RESERVED
CVE-2007-4474
More information about the Secure-testing-commits
mailing list