[Secure-testing-commits] r38343 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 16 05:34:13 UTC 2015
Author: carnil
Date: 2015-12-16 05:34:13 +0000 (Wed, 16 Dec 2015)
New Revision: 38343
Modified:
data/CVE/list
Log:
Two CVEs for subversion fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-16 05:31:21 UTC (rev 38342)
+++ data/CVE/list 2015-12-16 05:34:13 UTC (rev 38343)
@@ -10086,7 +10086,7 @@
RESERVED
CVE-2015-5343 [Remotely triggerable heap overflow and out-of-bounds read in mod_dav_svn caused by integer overflow when parsing skel-encoded request bodies]
RESERVED
- - subversion <unfixed>
+ - subversion 1.9.3-1
[wheezy] - subversion <not-affected> (Vulnerable code not present)
[squeeze] - subversion <not-affected> (Vulnerable code not present)
NOTE: https://subversion.apache.org/security/CVE-2015-5343-advisory.txt
@@ -10448,7 +10448,7 @@
- spice 0.12.5-1.3 (bug #801089)
CVE-2015-5259 [Remotely triggerable heap overflow and out-of-bounds read caused by integer overflow in the svn:// protocol parser]
RESERVED
- - subversion <unfixed>
+ - subversion 1.9.3-1
[jessie] - subversion <not-affected> (Only affects 1.9.0 through 1.9.2 (inclusive))
[wheezy] - subversion <not-affected> (Only affects 1.9.0 through 1.9.2 (inclusive))
[squeeze] - subversion <not-affected> (Only affects 1.9.0 through 1.9.2 (inclusive))
More information about the Secure-testing-commits
mailing list