[Secure-testing-commits] r30412 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Nov 28 12:18:24 UTC 2014
Author: carnil
Date: 2014-11-28 12:18:24 +0000 (Fri, 28 Nov 2014)
New Revision: 30412
Modified:
data/CVE/list
Log:
Correct description for mutt issue and add reference to upstream bugreport
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-28 10:46:57 UTC (rev 30411)
+++ data/CVE/list 2014-11-28 12:18:24 UTC (rev 30412)
@@ -8,9 +8,10 @@
[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
NOTE: http://github.com/mantisbt/mantisbt/commit/7bb78e4581ff1092c811ea96582fe602624cdcdd
NOTE: https://www.mantisbt.org/bugs/view.php?id=17811
-CVE-2014-9116 [mutt: buffer overflow]
+CVE-2014-9116 [mutt: incorrect use of mutt_substrdup() in write_one_header()]
- mutt <unfixed> (bug #771125)
NOTE: Detailed analysis in https://bugzilla.redhat.com/show_bug.cgi?id=1168463#c4
+ NOTE: Upstream bugreport: http://dev.mutt.org/trac/ticket/3716
CVE-2014-9114 [blkid command injection]
- util-linux <unfixed> (bug #771274)
NOTE: http://www.openwall.com/lists/oss-security/2014/11/26/13
More information about the Secure-testing-commits
mailing list