[Secure-testing-commits] r34443 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat May 23 06:07:14 UTC 2015
Author: carnil
Date: 2015-05-23 06:07:13 +0000 (Sat, 23 May 2015)
New Revision: 34443
Modified:
data/CVE/list
Log:
Update two coreutils issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-23 05:43:48 UTC (rev 34442)
+++ data/CVE/list 2015-05-23 06:07:13 UTC (rev 34443)
@@ -100,15 +100,15 @@
RESERVED
CVE-2015-4042 [buffer overflow related to SIZE_MAX - lenb - 2 < lena test]
RESERVED
- - coreutils <unfixed>
+ - coreutils <not-affected> (Debian does not apply coreutils-i18n.patch)
NOTE: https://github.com/pixelb/coreutils/commit/bea5e36cc876ed627bb5e0eca36fdfaa6465e940
- TODO: check
+ NOTE: http://pkgs.fedoraproject.org/cgit/coreutils.git/plain/coreutils-i18n.patch
CVE-2015-4041 [heap overflow; size calculation without properly considering the number of bytes occupied by multibyte characters]
RESERVED
- - coreutils <unfixed>
+ - coreutils <not-affected> (Debian does not apply coreutils-i18n.patch)
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=928749
NOTE: https://github.com/pixelb/coreutils/commit/bea5e36cc876ed627bb5e0eca36fdfaa6465e940
- TODO: check
+ NOTE: http://pkgs.fedoraproject.org/cgit/coreutils.git/plain/coreutils-i18n.patch
CVE-2015-4035
RESERVED
- xz-utils <not-affected> (Affects 4.999.9beta)
More information about the Secure-testing-commits
mailing list