[Secure-testing-commits] r31106 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jan 3 21:41:14 UTC 2015
Author: carnil
Date: 2015-01-03 21:41:14 +0000 (Sat, 03 Jan 2015)
New Revision: 31106
Modified:
data/CVE/list
Log:
Update another issue in file, introduced in 5.16 upstream
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-03 21:38:48 UTC (rev 31105)
+++ data/CVE/list 2015-01-03 21:41:14 UTC (rev 31106)
@@ -623,9 +623,12 @@
NOTE: Introduced by: https://github.com/file/file/commit/956a45ab1c54b11304b367056f41905e72a02380#diff-bc5c24ef9f39a5f4963ca28ecbc645b3L423
CVE-2014-XXXX [Limit string printing to 100 chars - DoS]
- file 1:5.21+15-1
+ [wheezy] - file <not-affected> (Introduced in 5.16)
+ [squeeze] - file <not-affected> (Introduced in 5.16)
- php5 <unfixed>
NOTE: Report: http://mx.gw.com/pipermail/file/2014/001654.html
NOTE: Fix: https://github.com/file/file/commit/65437cee25199dbd385fb35901bc0011e164276c
+ NOTE: Introduced by: https://github.com/file/file/commit/c8451af8ab0c2e2a93ce93b9c68257d31576cc85 (5.16)
CVE-2014-XXXX [insufficient 'X-Forwarded-For' header validation]
- rabbitmq-server 3.4.1-1 (bug #773134)
[jessie] - rabbitmq-server 3.3.5-1.1
More information about the Secure-testing-commits
mailing list