[Secure-testing-commits] r32217 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Feb 13 17:06:31 UTC 2015
Author: jmm
Date: 2015-02-13 17:06:31 +0000 (Fri, 13 Feb 2015)
New Revision: 32217
Modified:
data/CVE/list
Log:
fix status for cabextract/libmspack
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-13 17:04:22 UTC (rev 32216)
+++ data/CVE/list 2015-02-13 17:06:31 UTC (rev 32217)
@@ -525,15 +525,18 @@
NOTE: http://git.moodle.org/gw?p=moodle.git;a=commit;h=af9a7937cc085f96bdbc4724cadec6eeae0242fc
CVE-2015-XXXX [Invalid read in ensure_filepath]
- libmspack 0.5-1
+ - cabextract 1.4-5
[wheezy] - cabextract <no-dsa> (Minor issue)
[squeeze] - cabextract <no-dsa> (Minor issue)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/03/12
+ NOTE: Starting with 1.4-5 cabextract uses the mspack system library
CVE-2015-XXXX [Invalid read in create_output_name]
- libmspack 0.5-1
- - cabextract <unfixed>
+ - cabextract 1.4-5
[wheezy] - cabextract <no-dsa> (Minor issue)
[squeeze] - cabextract <no-dsa> (Minor issue)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/03/12
+ NOTE: Starting with 1.4-5 cabextract uses the mspack system library
CVE-2014-9655 [access of uninitialized memory]
RESERVED
- tiff <unfixed> (bug #777390)
@@ -3673,6 +3676,7 @@
- cabextract 1.4-5 (bug #772891)
[wheezy] - cabextract <no-dsa> (Minor issue)
[squeeze] - cabextract <no-dsa> (Minor issue)
+ NOTE: Starting with 1.4-5 cabextract uses the mspack system library
CVE-2012-6686 [unbound alloca use in glob_in_dir]
RESERVED
- glibc 2.17-1
More information about the Secure-testing-commits
mailing list