[Secure-testing-commits] r32778 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Mar 11 07:49:22 UTC 2015
Author: carnil
Date: 2015-03-11 07:47:34 +0000 (Wed, 11 Mar 2015)
New Revision: 32778
Modified:
data/CVE/list
Log:
Add CVE-2015-1782/libssh2
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-11 06:51:54 UTC (rev 32777)
+++ data/CVE/list 2015-03-11 07:47:34 UTC (rev 32778)
@@ -1102,8 +1102,10 @@
[squeeze] - lasso <not-affected> (Vulnerable code introduced later)
NOTE: Upstream fix: https://repos.entrouvert.org/lasso.git/commit/lasso/xml?id=6d854cef4211cdcdbc7446c978f23ab859847cdd (v2.4.1)
NOTE: Introduced by: https://repos.entrouvert.org/lasso.git/commit/lasso/xml?id=154812b401e3845977b3a4892dbc5e5a0b9d03cf (v2.4.0)
-CVE-2015-1782
+CVE-2015-1782 [Using SSH_MSG_KEXINIT data unbounded]
RESERVED
+ - libssh2 <unfixed>
+ NOTE: http://www.libssh2.org/mail/libssh2-devel-archive-2015-03/0037.shtml
CVE-2015-1781
RESERVED
CVE-2015-1780
More information about the Secure-testing-commits
mailing list