[Secure-testing-commits] r31863 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jan 31 10:44:52 UTC 2015
Author: carnil
Date: 2015-01-31 10:44:52 +0000 (Sat, 31 Jan 2015)
New Revision: 31863
Modified:
data/CVE/list
Log:
Proper fix for CVE-2014-8139 is in 6.0-16, updated entry
NOTE: previous fix introduced a regression.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-31 10:17:51 UTC (rev 31862)
+++ data/CVE/list 2015-01-31 10:44:52 UTC (rev 31863)
@@ -7758,7 +7758,7 @@
CVE-2014-8139 [CRC32 heap overflow]
RESERVED
{DSA-3113-1 DLA-124-1}
- - unzip 6.0-13 (bug #773722)
+ - unzip 6.0-16 (bug #773722)
CVE-2014-8138 (Heap-based buffer overflow in the jp2_decode function in JasPer ...)
{DSA-3106-1 DLA-121-1}
- jasper 1.900.1-debian1-2.3 (bug #773463)
More information about the Secure-testing-commits
mailing list