[Secure-testing-commits] r30657 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 11 06:30:48 UTC 2014
Author: carnil
Date: 2014-12-11 06:30:47 +0000 (Thu, 11 Dec 2014)
New Revision: 30657
Modified:
data/CVE/list
Log:
Add bug reference for cpio
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-11 06:30:39 UTC (rev 30656)
+++ data/CVE/list 2014-12-11 06:30:47 UTC (rev 30657)
@@ -790,7 +790,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2014/11/26/13
NOTE: https://github.com/karelzak/util-linux/commit/89e90ae7b2826110ea28c1c0eb8e7c56c3907bdc
CVE-2014-9112 (Heap-based buffer overflow in the process_copy_in function in GNU Cpio ...)
- - cpio <unfixed>
+ - cpio <unfixed> (bug #772793)
NOTE: http://lcamtuf.coredump.cx/afl/vulns/lesspipe-cpio-bad-write.cpio
NOTE: https://savannah.gnu.org/bugs/?43709
NOTE: http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=746f3ff6
More information about the Secure-testing-commits
mailing list