[Secure-testing-commits] r30926 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Dec 22 19:01:25 UTC 2014


Author: carnil
Date: 2014-12-22 19:01:25 +0000 (Mon, 22 Dec 2014)
New Revision: 30926

Modified:
   data/CVE/list
Log:
Add fixed version for unzip

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-12-22 18:47:53 UTC (rev 30925)
+++ data/CVE/list	2014-12-22 19:01:25 UTC (rev 30926)
@@ -3939,13 +3939,13 @@
 	NOTE: Only affects an inherently insecure use case
 CVE-2014-8141 [heap overflow in getZip64Data]
 	RESERVED
-	- unzip <unfixed> (bug #773722)
+	- unzip 6.0-13 (bug #773722)
 CVE-2014-8140 [heap overflow in test_compr_eb]
 	RESERVED
-	- unzip <unfixed> (bug #773722)
+	- unzip 6.0-13 (bug #773722)
 CVE-2014-8139 [CRC32 heap overflow]
 	RESERVED
-	- unzip <unfixed> (bug #773722)
+	- unzip 6.0-13 (bug #773722)
 CVE-2014-8138 [heap overflow in jp2_decode()]
 	RESERVED
 	{DSA-3106-1}




More information about the Secure-testing-commits mailing list