[Secure-testing-commits] r28413 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Aug 21 13:51:45 UTC 2014


Author: carnil
Date: 2014-08-21 13:51:45 +0000 (Thu, 21 Aug 2014)
New Revision: 28413

Modified:
   data/CVE/list
Log:
Update entry for lua

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-08-21 09:49:35 UTC (rev 28412)
+++ data/CVE/list	2014-08-21 13:51:45 UTC (rev 28413)
@@ -1,8 +1,9 @@
 CVE-2014-XXXX [possible overflow in vararg functions]
 	- lua50 <undetermined>
 	- lua5.1 <unfixed>
-	- lua5.2 <unfixed>
+	- lua5.2 5.2.3-1
 	NOTE: http://www.lua.org/bugs.html#5.2.2-1
+	NOTE: fixed in 5.2.3, see https://bugzilla.redhat.com/show_bug.cgi?id=1132304#c7
 	TODO: check, reproducer also available
 CVE-2014-5368
 	NOT-FOR-US: WordPress plugin wp-source-control




More information about the Secure-testing-commits mailing list