[Secure-testing-commits] r32895 - in data: CVE DLA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Mar 15 20:11:01 UTC 2015
Author: carnil
Date: 2015-03-15 20:11:01 +0000 (Sun, 15 Mar 2015)
New Revision: 32895
Modified:
data/CVE/list
data/DLA/list
Log:
Update as well the squeeze-lts entries for libarchive
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-15 19:55:05 UTC (rev 32894)
+++ data/CVE/list 2015-03-15 20:11:01 UTC (rev 32895)
@@ -3650,9 +3650,8 @@
CVE-2015-1051 (Open redirect vulnerability in the Context UI module in the Context ...)
NOT-FOR-US: Drupal extension drupal7-context
CVE-2015-2304 [directory traversal in bsdcpio]
- {DSA-3180-1}
+ {DSA-3180-1 DLA-166-1}
- libarchive 3.1.2-11 (bug #778266)
- [squeeze] - libarchive 2.8.4.forreal-1+squeeze3
NOTE: mark wheezy and squeeze versions here until CVE is assigned
NOTE: http://www.openwall.com/lists/oss-security/2015/01/16/7
NOTE: Patch: https://github.com/libarchive/libarchive/commit/59357157706d47c365b2227739e17daba3607526
Modified: data/DLA/list
===================================================================
--- data/DLA/list 2015-03-15 19:55:05 UTC (rev 32894)
+++ data/DLA/list 2015-03-15 20:11:01 UTC (rev 32895)
@@ -22,6 +22,7 @@
{CVE-2012-6684}
[squeeze] - redcloth 4.2.2-1.1+deb6u1
[07 Mar 2015] DLA-166-1 libarchive - security update
+ {CVE-2015-2304}
[squeeze] - libarchive 2.8.4.forreal-1+squeeze3
[06 Mar 2015] DLA-165-1 eglibc - security update
{CVE-2012-3405 CVE-2012-3406 CVE-2012-3480 CVE-2012-4412 CVE-2012-4424 CVE-2013-0242 CVE-2013-1914 CVE-2013-4237 CVE-2013-4332 CVE-2013-4357 CVE-2013-4458 CVE-2013-4788 CVE-2013-7423 CVE-2013-7424 CVE-2014-4043 CVE-2015-1472 CVE-2015-1473}
More information about the Secure-testing-commits
mailing list