[Secure-testing-commits] r31995 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Feb 5 18:40:16 UTC 2015
Author: carnil
Date: 2015-02-05 18:40:16 +0000 (Thu, 05 Feb 2015)
New Revision: 31995
Modified:
data/CVE/list
Log:
CVE-2014-9653/file assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-05 17:33:10 UTC (rev 31994)
+++ data/CVE/list 2015-02-05 18:40:16 UTC (rev 31995)
@@ -97,12 +97,12 @@
[wheezy] - cabextract <no-dsa> (Minor issue)
[squeeze] - cabextract <no-dsa> (Minor issue)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/03/12
-CVE-2014-XXXX [Malformed elf file causes access to uninitialized memory]
+CVE-2014-9653 [Malformed elf file causes access to uninitialized memory]
- file <unfixed>
- php5 <not-affected> (readelf.c not used and even removed in 5.4.36-0+deb7u3)
NOTE: http://bugs.gw.com/view.php?id=409
NOTE: http://mx.gw.com/pipermail/file/2014/001649.html
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/04/13
+ NOTE: http://www.openwall.com/lists/oss-security/2015/02/04/13
CVE-2014-XXXX [NULL pointer dereference in unserialize.c:var_push_dtor]
- php5 <unfixed>
NOTE: https://bugs.php.net/bug.php?id=68545
More information about the Secure-testing-commits
mailing list