[Secure-testing-commits] r38068 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 3 05:32:03 UTC 2015
Author: carnil
Date: 2015-12-03 05:32:02 +0000 (Thu, 03 Dec 2015)
New Revision: 38068
Modified:
data/CVE/list
Log:
Update information for CVE-2015-8388/pcre3
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-03 05:16:30 UTC (rev 38067)
+++ data/CVE/list 2015-12-03 05:32:02 UTC (rev 38068)
@@ -6955,9 +6955,13 @@
TODO: check
CVE-2015-8388 (PCRE before 8.38 mishandles the /(?=di(?<=(?1))|(?=(.))))/ pattern and ...)
- pcre3 2:8.35-7
+ [jessie] - pcre3 <no-dsa> (Minor issue)
+ [wheezy] - pcre3 <no-dsa> (Minor issue)
+ [squeeze] - pcre3 <no-dsa> (Minor issue)
+ NOTE: https://bugs.exim.org/show_bug.cgi?id=1651
+ NOTE: http://vcs.pcre.org/pcre?view=revision&revision=1571
NOTE: Fixed in 8.38
- NOTE: http://vcs.pcre.org/pcre?view=revision&revision=1571
- TODO: check, duplicate of CVE-2015-5073, check with MITRE
+ NOTE: Different issue than CVE-2015-5073 but same fixing commit
CVE-2015-8387 (PCRE before 8.38 mishandles (?123) subroutine calls and related ...)
- pcre3 <unfixed>
[jessie] - pcre3 <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list