[Secure-testing-commits] r32661 - in data: . CVE DSA
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Mar 5 20:53:27 UTC 2015
Author: jmm
Date: 2015-03-05 20:53:27 +0000 (Thu, 05 Mar 2015)
New Revision: 32661
Modified:
data/CVE/list
data/DSA/list
data/dsa-needed.txt
Log:
libarchive DSA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-05 20:42:24 UTC (rev 32660)
+++ data/CVE/list 2015-03-05 20:53:27 UTC (rev 32661)
@@ -3328,6 +3328,7 @@
NOT-FOR-US: Drupal extension drupal7-context
CVE-2015-XXXX [directory traversal in bsdcpio]
- libarchive 3.1.2-11 (bug #778266)
+ [wheezy] - libarchive 3.0.4-3+wheezy1
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/01/16/7
NOTE: Patch: https://github.com/libarchive/libarchive/commit/59357157706d47c365b2227739e17daba3607526
CVE-2015-1200 (Race condition in pxz 4.999.99 Beta 3 uses weak file permissions for ...)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2015-03-05 20:42:24 UTC (rev 32660)
+++ data/DSA/list 2015-03-05 20:53:27 UTC (rev 32661)
@@ -1,3 +1,5 @@
+[05 Mar 2015] DSA-3180-1 libarchive - security update
+ [wheezy] - libarchive 3.0.4-3+wheezy1
[03 Mar 2015] DSA-3179-1 icedove - security update
{CVE-2015-0822 CVE-2015-0827 CVE-2015-0831 CVE-2015-0836}
[wheezy] - icedove 31.5.0-1~deb7u1
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2015-03-05 20:42:24 UTC (rev 32660)
+++ data/dsa-needed.txt 2015-03-05 20:53:27 UTC (rev 32661)
@@ -30,8 +30,6 @@
--
jqueryui
--
-libarchive (ghedo)
---
libav
--
libgcrypt11 (ghedo)
More information about the Secure-testing-commits
mailing list