[Secure-testing-commits] r32039 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Feb 7 05:59:43 UTC 2015
Author: carnil
Date: 2015-02-07 05:59:43 +0000 (Sat, 07 Feb 2015)
New Revision: 32039
Modified:
data/CVE/list
Log:
Add two fuseiso issues, left TODO since some infos missing
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-07 05:56:26 UTC (rev 32038)
+++ data/CVE/list 2015-02-07 05:59:43 UTC (rev 32039)
@@ -15,6 +15,14 @@
- libfcgi 2.4.0-8.3 (bug #681591)
[wheezy] - libfcgi <no-dsa> (Minor issue)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/06/4
+CVE-2012-XXXX [Stack-based buffer overflow when scanning directory structure for absolute path entries]
+ - fuseiso <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=863091
+ TODO: check
+CVE-2012-XXXX [Integer overflow, leading to heap buffer overflow when reading certain ISO ZF blocks]
+ - fuseiso <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=863102
+ TODO: check
CVE-2010-XXXX [crash when parsing overly long links]
- lynx-cur <unfixed>
CVE-2015-1482 (Ansible Tower (aka Ansible UI) before 2.0.5 allows remote attackers to ...)
More information about the Secure-testing-commits
mailing list