[Secure-testing-commits] r30385 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Nov 27 13:27:52 UTC 2014
Author: carnil
Date: 2014-11-27 13:27:52 +0000 (Thu, 27 Nov 2014)
New Revision: 30385
Modified:
data/CVE/list
Log:
Add upstream patch reference
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-27 13:16:14 UTC (rev 30384)
+++ data/CVE/list 2014-11-27 13:27:52 UTC (rev 30385)
@@ -8,6 +8,7 @@
CVE-2014-9114 [blkid command injection]
- util-linux <unfixed>
NOTE: http://www.openwall.com/lists/oss-security/2014/11/26/13
+ NOTE: https://github.com/karelzak/util-linux/commit/89e90ae7b2826110ea28c1c0eb8e7c56c3907bdc
CVE-2014-9112 [heap-based buffer overflow]
- cpio <unfixed>
NOTE: http://lcamtuf.coredump.cx/afl/vulns/lesspipe-cpio-bad-write.cpio
More information about the Secure-testing-commits
mailing list