[Secure-testing-commits] r36272 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Aug 24 05:09:28 UTC 2015
Author: carnil
Date: 2015-08-24 05:09:28 +0000 (Mon, 24 Aug 2015)
New Revision: 36272
Modified:
data/CVE/list
Log:
Update information for pcre3 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-24 04:53:03 UTC (rev 36271)
+++ data/CVE/list 2015-08-24 05:09:28 UTC (rev 36272)
@@ -1,6 +1,10 @@
CVE-2015-XXXX [PCRE Library Heap Overflow in compile_regex()]
- pcre3 <unfixed> (bug #796762)
+ [jessie] - pcre3 <no-dsa> (Minor issue)
+ [wheezy] - pcre3 <not-affected> (Vulnerable code introduced later)
+ [squeeze] - pcre3 <not-affected> (Vulnerable code introduced later)
NOTE: https://bugs.exim.org/show_bug.cgi?id=1672
+ NOTE: http://vcs.pcre.org/pcre?view=revision&revision=1594
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/08/24/1
CVE-2015-6523 (Cross-site request forgery (CSRF) vulnerability in the Portfolio ...)
NOT-FOR-US: Portfolio plugin for WordPress
More information about the Secure-testing-commits
mailing list