[Secure-testing-commits] r31106 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Jan 3 21:41:14 UTC 2015


Author: carnil
Date: 2015-01-03 21:41:14 +0000 (Sat, 03 Jan 2015)
New Revision: 31106

Modified:
   data/CVE/list
Log:
Update another issue in file, introduced in 5.16 upstream

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-03 21:38:48 UTC (rev 31105)
+++ data/CVE/list	2015-01-03 21:41:14 UTC (rev 31106)
@@ -623,9 +623,12 @@
 	NOTE: Introduced by: https://github.com/file/file/commit/956a45ab1c54b11304b367056f41905e72a02380#diff-bc5c24ef9f39a5f4963ca28ecbc645b3L423
 CVE-2014-XXXX [Limit string printing to 100 chars - DoS]
 	- file 1:5.21+15-1
+	[wheezy] - file <not-affected> (Introduced in 5.16)
+	[squeeze] - file <not-affected> (Introduced in 5.16)
 	- php5 <unfixed>
 	NOTE: Report: http://mx.gw.com/pipermail/file/2014/001654.html
 	NOTE: Fix: https://github.com/file/file/commit/65437cee25199dbd385fb35901bc0011e164276c
+	NOTE: Introduced by: https://github.com/file/file/commit/c8451af8ab0c2e2a93ce93b9c68257d31576cc85 (5.16)
 CVE-2014-XXXX [insufficient 'X-Forwarded-For' header validation]
 	- rabbitmq-server 3.4.1-1 (bug #773134)
 	[jessie] - rabbitmq-server 3.3.5-1.1




More information about the Secure-testing-commits mailing list