[Secure-testing-commits] r37924 - in data: CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Nov 26 18:01:52 UTC 2015
Author: carnil
Date: 2015-11-26 18:01:52 +0000 (Thu, 26 Nov 2015)
New Revision: 37924
Modified:
data/CVE/list
data/DSA/list
Log:
Reserve DSA number for dpkg update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-26 18:01:19 UTC (rev 37923)
+++ data/CVE/list 2015-11-26 18:01:52 UTC (rev 37924)
@@ -21819,8 +21819,10 @@
[squeeze] - rabbitmq-server <not-affected> (Management web UI not available in version 1.8.1)
CVE-2015-0861
RESERVED
-CVE-2015-0860
+CVE-2015-0860 [off-by-one write access in dpkg-deb]
RESERVED
+ - dpkg <unfixed>
+ [squeeze] - dpkg <not-affected> (Vulnerable code not present)
CVE-2015-0859
RESERVED
{DSA-3405-1 DLA-348-1}
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2015-11-26 18:01:19 UTC (rev 37923)
+++ data/DSA/list 2015-11-26 18:01:52 UTC (rev 37924)
@@ -1,3 +1,7 @@
+[26 Nov 2015] DSA-3407-1 dpkg - security update
+ {CVE-2015-0860}
+ [wheezy] - dpkg 1.16.17
+ [jessie] - dpkg 1.17.26
[25 Nov 2015] DSA-3406-1 nspr - security update
{CVE-2015-7183}
[wheezy] - nspr 2:4.9.2-1+deb7u3
More information about the Secure-testing-commits
mailing list