[Secure-testing-commits] r33328 - data/CVE

Thu Apr 2 04:41:38 UTC 2015

Author: carnil
Date: 2015-04-02 04:41:37 +0000 (Thu, 02 Apr 2015)
New Revision: 33328

Modified:
   data/CVE/list
Log:
Add fixed version for unrar-nonfree symlink directory traversal, #774171

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-04-02 04:40:28 UTC (rev 33327)
+++ data/CVE/list	2015-04-02 04:41:37 UTC (rev 33328)
@@ -3853,7 +3853,7 @@
 CVE-2015-1422 (Multiple cross-site scripting (XSS) vulnerabilities in Gecko CMS 2.2 ...)
 	NOT-FOR-US: Gecko CMS
 CVE-2015-XXXX [symlink directory traversal]
-	- unrar-nonfree (bug #774171)
+	- unrar-nonfree 1:5.2.7-0.1 (bug #774171)
 	[jessie] - unrar-nonfree <no-dsa> (Non-free not supported)
 	[wheezy] - unrar-nonfree <no-dsa> (Non-free not supported)
 CVE-2015-XXXX [symlink directory traversal]


