[Secure-testing-commits] r26586 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 16 19:37:07 UTC 2014
Author: carnil
Date: 2014-04-16 19:37:07 +0000 (Wed, 16 Apr 2014)
New Revision: 26586
Modified:
data/CVE/list
Log:
Add fixed version for rsync (CVE-2014-2855)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-04-16 19:36:13 UTC (rev 26585)
+++ data/CVE/list 2014-04-16 19:37:07 UTC (rev 26586)
@@ -283,7 +283,7 @@
- qemu-kvm <removed>
NOTE: Upstream fix https://lists.nongnu.org/archive/html/qemu-devel/2014-04/msg02016.html
CVE-2014-2855 [Daemon infinite loop when no matched user in secrets]
- - rsync <unfixed> (bug #744791)
+ - rsync 3.1.0-3 (bug #744791)
[wheezy] - rsync <not-affected> (Introduced in 3.1.0)
[squeeze] - rsync <not-affected> (Introduced in 3.1.0)
NOTE: Introduced with https://git.samba.org/?p=rsync.git;a=commitdiff;h=5ebe9a46d7f3c846a6d665cb8c6ab8b79508a6df
More information about the Secure-testing-commits
mailing list