[Secure-testing-commits] r32688 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Mar 7 14:52:47 UTC 2015
Author: carnil
Date: 2015-03-07 14:52:47 +0000 (Sat, 07 Mar 2015)
New Revision: 32688
Modified:
data/CVE/list
Log:
Mark libarchive versions directly in CVE/list file until CVE is assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-07 14:50:26 UTC (rev 32687)
+++ data/CVE/list 2015-03-07 14:52:47 UTC (rev 32688)
@@ -3363,6 +3363,8 @@
CVE-2015-XXXX [directory traversal in bsdcpio]
- libarchive 3.1.2-11 (bug #778266)
[wheezy] - libarchive 3.0.4-3+wheezy1
+ [squeeze] - libarchive 2.8.4.forreal-1+squeeze3
+ NOTE: mark wheezy and squeeze versions here until CVE is assigned
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/01/16/7
NOTE: Patch: https://github.com/libarchive/libarchive/commit/59357157706d47c365b2227739e17daba3607526
CVE-2015-1200 (Race condition in pxz 4.999.99 Beta 3 uses weak file permissions for ...)
More information about the Secure-testing-commits
mailing list