[Secure-testing-commits] r37584 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Nov 5 20:17:04 UTC 2015
Author: carnil
Date: 2015-11-05 20:17:04 +0000 (Thu, 05 Nov 2015)
New Revision: 37584
Modified:
data/CVE/list
Log:
Update entries for jessie and wheezy for cyrus-imapd-2.4
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-05 18:49:44 UTC (rev 37583)
+++ data/CVE/list 2015-11-05 20:17:04 UTC (rev 37584)
@@ -1,8 +1,12 @@
CVE-2015-8078 [integer overflow in the section_offset addition after the c21e179c1f6b968fe69bebe079176714e511587b fix]
- cyrus-imapd-2.4 <unfixed>
+ [jessie] - cyrus-imapd-2.4 <not-affected> (Incomplete patch for CVE-2015-8076 not applied)
+ [wheezy] - cyrus-imapd-2.4 <not-affected> (Incomplete patch for CVE-2015-8076 not applied)
NOTE: https://cyrus.foundation/cyrus-imapd/commit/?id=6fb6a272171f49c79ba6ab7c6403eb25b39ec1b2
CVE-2015-8077 [integer overflow in the start_octet addition after the 07de4ff1bf2fa340b9d77b8e7de8d43d47a33921 fix]
- cyrus-imapd-2.4 <unfixed>
+ [jessie] - cyrus-imapd-2.4 <not-affected> (Incomplete patch for CVE-2015-8076 not applied)
+ [wheezy] - cyrus-imapd-2.4 <not-affected> (Incomplete patch for CVE-2015-8076 not applied)
NOTE: https://cyrus.foundation/cyrus-imapd/commit/?id=745e161c834f1eb6d62fc14477f51dae799e1e08
CVE-2015-8074 (mediaserver in Android before 5.1.1 LMY48X allows remote attackers to ...)
TODO: check
More information about the Secure-testing-commits
mailing list