[Secure-testing-commits] r38086 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 3 19:35:06 UTC 2015
Author: carnil
Date: 2015-12-03 19:35:06 +0000 (Thu, 03 Dec 2015)
New Revision: 38086
Modified:
data/CVE/list
Log:
CVE-2015-8385 affects as well pcre3/8.02-1.1, mark as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-03 19:13:44 UTC (rev 38085)
+++ data/CVE/list 2015-12-03 19:35:06 UTC (rev 38086)
@@ -7009,6 +7009,7 @@
- pcre3 <unfixed>
[jessie] - pcre3 <no-dsa> (Minor issue)
[wheezy] - pcre3 <no-dsa> (Minor issue)
+ [squeeze] - pcre3 <no-dsa> (Minor issue)
NOTE: Fixed in 8.38
NOTE: http://vcs.pcre.org/pcre?view=revision&revision=1559
CVE-2015-8384 (PCRE before 8.38 mishandles the /(?J)(?'d'(?'d'\g{d}))/ pattern and ...)
More information about the Secure-testing-commits
mailing list