[Secure-testing-commits] r33164 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Mar 26 12:36:19 UTC 2015
Author: carnil
Date: 2015-03-26 12:36:19 +0000 (Thu, 26 Mar 2015)
New Revision: 33164
Modified:
data/CVE/list
Log:
Add fixed version for dulwich in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-26 11:27:15 UTC (rev 33163)
+++ data/CVE/list 2015-03-26 12:36:19 UTC (rev 33164)
@@ -750,7 +750,7 @@
TODO: check affected versions
CVE-2014-9706 [dulwich: does not reject commits with invalid paths]
RESERVED
- - dulwich <unfixed> (bug #780989)
+ - dulwich 0.10.1-1 (bug #780989)
[jessie] - dulwich 0.9.7-3
NOTE: not yet accepted in jessie
NOTE: Patch: https://git.samba.org/?p=jelmer/dulwich.git;a=commitdiff;h=091638be3c89f46f42c3b1d57dc1504af5729176
@@ -5480,7 +5480,7 @@
RESERVED
CVE-2015-0838 [buffer overflow in the C implementation of the apply_delta() function]
RESERVED
- - dulwich <unfixed> (bug #780958)
+ - dulwich 0.10.1-1 (bug #780958)
[jessie] - dulwich 0.9.7-3
NOTE: not yet accepted in jessie
CVE-2015-0837 [data-dependent timing variations in modular exponentiation]
More information about the Secure-testing-commits
mailing list