[Secure-testing-commits] r33891 - data/CVE
Scott Kitterman
kitterman at moszumanska.debian.org
Mon Apr 27 17:32:14 UTC 2015
Author: kitterman
Date: 2015-04-27 17:32:13 +0000 (Mon, 27 Apr 2015)
New Revision: 33891
Modified:
data/CVE/list
Log:
Add note about rar unfixed upstream and license restrictions
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-27 17:24:07 UTC (rev 33890)
+++ data/CVE/list 2015-04-27 17:32:13 UTC (rev 33891)
@@ -5577,6 +5577,7 @@
- rar <unfixed> (bug #774172)
[jessie] - rar <no-dsa> (Non-free not supported)
[wheezy] - rar <no-dsa> (Non-free not supported)
+ [squeeze] - rar <no-dsa> (Not fixed upstream and license does not allow modification)
CVE-2015-XXXX [regular expression denial of service]
- node-marked <unfixed> (unimportant)
NOTE: https://nodesecurity.io/advisories/marked_redos
More information about the Secure-testing-commits
mailing list