[Secure-testing-commits] r29970 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Nov 11 15:42:45 UTC 2014


Author: carnil
Date: 2014-11-11 15:42:45 +0000 (Tue, 11 Nov 2014)
New Revision: 29970

Modified:
   data/CVE/list
Log:
Add one directory traversal vulnerability for binutils/gdb

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-11 15:22:56 UTC (rev 29969)
+++ data/CVE/list	2014-11-11 15:42:45 UTC (rev 29970)
@@ -1,3 +1,9 @@
+CVE-2014-XXXX [Directory traversal vulnerability allowing random files deleteion/creation]
+	- binutils <unfixed>
+	- gdb <unfixed>
+	NOTE: Upstream tracker: https://sourceware.org/bugzilla/show_bug.cgi?id=17552
+	NOTE: Upstream patch: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=dd9b91de2149ee81d47f708e7b0bbf57da10ad42
+	TODO: check
 CVE-2014-XXXX [Buffer overflow while trying to send a file as base64 with /query]
 	- konversation <unfixed> (bug #768656)
 	TODO: check




More information about the Secure-testing-commits mailing list