[Secure-testing-commits] r32246 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Feb 14 22:22:17 UTC 2015
Author: jmm
Date: 2015-02-14 22:22:17 +0000 (Sat, 14 Feb 2015)
New Revision: 32246
Modified:
data/CVE/list
Log:
spencer regex: cups n/a, vigor fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-14 22:06:30 UTC (rev 32245)
+++ data/CVE/list 2015-02-14 22:22:17 UTC (rev 32246)
@@ -79,14 +79,14 @@
- llvm-toolchain-3.6 <unfixed> (bug #778393)
- llvm-toolchain-snapshot <unfixed> (bug #778394)
- haskell-regex-posix <not-affected> (only when building on Windows, see bug #778395)
- - cups <unfixed> (bug #778396)
+ - cups <not-affected> (Local regex copy only used when building on Windows, see #778396)
- librcsb-core-wrapper <unfixed> (bug #778397)
- openrpt <unfixed> (bug #778398)
- z88dk <unfixed> (bug #778399)
- newlib <unfixed> (bug #778408)
- yap <unfixed> (bug #778410)
- vnc4 <unfixed> (bug #778403)
- - sma <not-affected> (Local regx copy only used when building on Windows, see #778411)
+ - sma <not-affected> (Local regex copy only used when building on Windows, see #778411)
- clamav <unfixed> (bug #778406)
[wheezy] - clamav <no-dsa> (Updated through stable-updates)
- knews <unfixed> (bug #778401)
@@ -94,7 +94,7 @@
- efl <unfixed> (bug #778414)
- ptlib <unfixed> (bug #778404)
- alpine <unfixed> (bug #778413)
- - vigor <unfixed> (bug #778409)
+ - vigor 0.016-24 (bug #778409)
- nvi <unfixed> (unimportant; bug #778412)
NOTE: http://www.kb.cert.org/vuls/id/695940
NOTE: https://guidovranken.wordpress.com/2015/02/04/full-disclosure-heap-overflow-in-h-spencers-regex-library-on-32-bit-systems/
More information about the Secure-testing-commits
mailing list