[Secure-testing-commits] r29962 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Nov 11 06:28:38 UTC 2014
Author: carnil
Date: 2014-11-11 06:28:37 +0000 (Tue, 11 Nov 2014)
New Revision: 29962
Modified:
data/CVE/list
Log:
Update information for CVE-2014-8625/dpkg
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-11 04:10:25 UTC (rev 29961)
+++ data/CVE/list 2014-11-11 06:28:37 UTC (rev 29962)
@@ -29,7 +29,9 @@
NOTE: http://git.php.net/?p=php-src.git;a=commit;h=c818d0d01341907fee82bdb81cab07b7d93bb9db
CVE-2014-8625 [format string vulnerability]
- dpkg <unfixed> (bug #768485)
+ [squeeze] - dpkg <not-affected> (Regression introduced in 1.16.2)
NOTE: https://bugs.launchpad.net/ubuntu/+source/dpkg/+bug/1389135
+ NOTE: Regression introduced with https://anonscm.debian.org/cgit/dpkg/dpkg.git/commit/?id=0b8652b226a7601dfd71471797d15168a7337242 (1.16.2)
CVE-2014-8598 [XML Import/Export plugin unrestricted access]
- mantis <unfixed>
NOTE: https://github.com/mantisbt/mantisbt/commit/80a15487
More information about the Secure-testing-commits
mailing list