[Secure-testing-commits] r34020 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat May 2 05:38:58 UTC 2015
Author: carnil
Date: 2015-05-02 05:38:57 +0000 (Sat, 02 May 2015)
New Revision: 34020
Modified:
data/CVE/list
Log:
Add fixed version for clamav
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-02 05:21:40 UTC (rev 34019)
+++ data/CVE/list 2015-05-02 05:38:57 UTC (rev 34020)
@@ -2070,7 +2070,7 @@
RESERVED
CVE-2015-2668 [Infinite loop condition on a crafted "xz" archive file]
RESERVED
- - clamav <unfixed>
+ - clamav 0.98.7+dfsg-1
[wheezy] - clamav <no-dsa> (Clamav is only updated through -updates)
[jessie] - clamav <no-dsa> (Clamav is only updated through -updates)
CVE-2015-2667
@@ -3311,12 +3311,12 @@
NOT-FOR-US: Palo Alto Networks Traps
CVE-2015-2222 [Crash on crafted petite packed file]
RESERVED
- - clamav <unfixed>
+ - clamav 0.98.7+dfsg-1
[wheezy] - clamav <no-dsa> (Clamav is only updated through -updates)
[jessie] - clamav <no-dsa> (Clamav is only updated through -updates)
CVE-2015-2221 [Infinite loop condition on crafted y0da cryptor file]
RESERVED
- - clamav <unfixed>
+ - clamav 0.98.7+dfsg-1
[wheezy] - clamav <no-dsa> (Clamav is only updated through -updates)
[jessie] - clamav <no-dsa> (Clamav is only updated through -updates)
CVE-2015-2220 (Multiple cross-site scripting (XSS) vulnerabilities in the Ninja Forms ...)
@@ -5084,7 +5084,7 @@
- vnc4 <unfixed> (unimportant; bug #778403)
NOTE: affected code not built in vnc4
- sma <not-affected> (Local regex copy only used when building on Windows, see #778411)
- - clamav <unfixed> (unimportant; bug #778406)
+ - clamav 0.98.7+dfsg-1 (unimportant; bug #778406)
NOTE: Only exploitable through virusdb updates, which need to be trusted anywaya
- knews <not-affected> (Uses system regex code, see #778401)
- radare2 <unfixed> (low; bug #778402)
More information about the Secure-testing-commits
mailing list