[Secure-testing-commits] r33137 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Mar 25 11:32:05 UTC 2015
Author: carnil
Date: 2015-03-25 11:32:05 +0000 (Wed, 25 Mar 2015)
New Revision: 33137
Modified:
data/CVE/list
Log:
Update dulwich items
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-25 11:11:16 UTC (rev 33136)
+++ data/CVE/list 2015-03-25 11:32:05 UTC (rev 33137)
@@ -719,6 +719,8 @@
CVE-2014-9706 [dulwich: does not reject commits with invalid paths]
RESERVED
- dulwich <unfixed> (bug #780989)
+ [jessie] - dulwich 0.9.7-3
+ NOTE: not yet accepted in jessie
NOTE: Patch: https://git.samba.org/?p=jelmer/dulwich.git;a=commitdiff;h=091638be3c89f46f42c3b1d57dc1504af5729176
NOTE: http://www.openwall.com/lists/oss-security/2015/03/21/1
CVE-2015-2348
@@ -5435,6 +5437,8 @@
CVE-2015-0838 [buffer overflow in the C implementation of the apply_delta() function]
RESERVED
- dulwich <unfixed> (bug #780958)
+ [jessie] - dulwich 0.9.7-3
+ NOTE: not yet accepted in jessie
CVE-2015-0837 [data-dependent timing variations in modular exponentiation]
RESERVED
{DSA-3185-1 DSA-3184-1 DLA-175-1}
More information about the Secure-testing-commits
mailing list