[Secure-testing-commits] r30923 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 22 17:26:04 UTC 2014
Author: carnil
Date: 2014-12-22 17:26:04 +0000 (Mon, 22 Dec 2014)
New Revision: 30923
Modified:
data/CVE/list
Log:
Add bug reference for unzip issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-22 17:15:10 UTC (rev 30922)
+++ data/CVE/list 2014-12-22 17:26:04 UTC (rev 30923)
@@ -3937,13 +3937,13 @@
NOTE: Only affects an inherently insecure use case
CVE-2014-8141 [heap overflow in getZip64Data]
RESERVED
- - unzip <unfixed>
+ - unzip <unfixed> (bug #773722)
CVE-2014-8140 [heap overflow in test_compr_eb]
RESERVED
- - unzip <unfixed>
+ - unzip <unfixed> (bug #773722)
CVE-2014-8139 [CRC32 heap overflow]
RESERVED
- - unzip <unfixed>
+ - unzip <unfixed> (bug #773722)
CVE-2014-8138 [heap overflow in jp2_decode()]
RESERVED
{DSA-3106-1}
More information about the Secure-testing-commits
mailing list