[Secure-testing-commits] r24729 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 13 05:55:28 UTC 2013
Author: carnil
Date: 2013-12-13 05:55:28 +0000 (Fri, 13 Dec 2013)
New Revision: 24729
Modified:
data/CVE/list
Log:
Add CVE-2013-7086, NFU
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-13 05:42:07 UTC (rev 24728)
+++ data/CVE/list 2013-12-13 05:55:28 UTC (rev 24729)
@@ -9,6 +9,8 @@
- clamav 0.97.7+dfsg-1
NOTE: https://github.com/vrtadmin/clamav-devel/commit/71990820d01c246e4e61408a3659dd9d92949b38
NOTE: from https://github.com/vrtadmin/clamav-devel/commits/master/libclamav/wwunpack.c
+CVE-2013-7086 [Command injection]
+ NOT-FOR-US: Ruby Gem Webbynode
CVE-2013-7085 [uscan: broken handling of filenames with whitespace]
- devscripts <unfixed> (bug #732006)
[wheezy] - devscripts <not-affected> (does not contain the vulnerable code; introduced in 2.13.5)
More information about the Secure-testing-commits
mailing list