[Secure-testing-commits] r32440 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Mon Feb 23 18:24:14 UTC 2015


Author: jmm
Date: 2015-02-23 18:24:14 +0000 (Mon, 23 Feb 2015)
New Revision: 32440

Modified:
   data/CVE/list
Log:
fuseiso bug


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-02-23 17:07:23 UTC (rev 32439)
+++ data/CVE/list	2015-02-23 18:24:14 UTC (rev 32440)
@@ -1459,15 +1459,13 @@
 	[wheezy] - libfcgi <no-dsa> (Minor issue)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/02/06/4
 CVE-2012-XXXX [Stack-based buffer overflow when scanning directory structure for absolute path entries]
-	- fuseiso <unfixed>
+	- fuseiso <unfixed> (bug #779047)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=863091
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/06/7
-	TODO: check
 CVE-2012-XXXX [Integer overflow, leading to heap buffer overflow when reading certain ISO ZF blocks]
-	- fuseiso <unfixed>
+	- fuseiso <unfixed> (bug #779047)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=863102
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/06/7
-	TODO: check
 CVE-2010-XXXX [crash when parsing overly long links]
 	- lynx-cur 2.8.8dev.4-1
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/07/2
@@ -6696,7 +6694,6 @@
 	- linux <unfixed>
 	- linux-2.6 <removed>
 	NOTE: Proposed upstream patch: http://www.spinics.net/lists/linux-ext4/msg47193.html
-	TODO: check
 CVE-2015-0274
 	RESERVED
 CVE-2015-0273 [use after free vulnerability in unserialize() with DateTimeZone]




More information about the Secure-testing-commits mailing list