[Secure-testing-commits] r34049 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun May 3 16:39:46 UTC 2015
Author: carnil
Date: 2015-05-03 16:39:46 +0000 (Sun, 03 May 2015)
New Revision: 34049
Modified:
data/CVE/list
Log:
Add two clamav issues with CVE request
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-03 16:35:20 UTC (rev 34048)
+++ data/CVE/list 2015-05-03 16:39:46 UTC (rev 34049)
@@ -1,3 +1,16 @@
+CVE-2015-XXXX [crashes on crafted upack packed file]
+ - clamav 0.98.7+dfsg-1
+ [wheezy] - clamav <no-dsa> (Clamav is only updated through -updates)
+ [jessie] - clamav <no-dsa> (Clamav is only updated through -updates)
+ NOTE: https://github.com/vrtadmin/clamav-devel/commit/a18af359decd270f5088e80e2ee2866c62e0843e
+ NOTE: https://github.com/vrtadmin/clamav-devel/commit/ed56f56c1f1529bda877ddd116ae7bc064667c73
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/03/3
+CVE-2015-XXXX [crash during algorithmic detection on crafted PE file]
+ - clamav 0.98.7+dfsg-1
+ [wheezy] - clamav <no-dsa> (Clamav is only updated through -updates)
+ [jessie] - clamav <no-dsa> (Clamav is only updated through -updates)
+ NOTE: https://github.com/vrtadmin/clamav-devel/commit/a7bdfb4f0d3210eeab49280726ff3ea6d703280e
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/03/4
CVE-2015-XXXX [BUG/MAJOR: http: don't read past buffer's end in http_replace_value]
- haproxy 1.5.12-1
TODO: check, might result in DoS
More information about the Secure-testing-commits
mailing list