[Secure-testing-commits] r47608 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Dec 31 06:03:08 UTC 2016
Author: carnil
Date: 2016-12-31 06:03:08 +0000 (Sat, 31 Dec 2016)
New Revision: 47608
Modified:
data/CVE/list
Log:
Add fixed version for nvi issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-31 00:43:08 UTC (rev 47607)
+++ data/CVE/list 2016-12-31 06:03:08 UTC (rev 47608)
@@ -63482,7 +63482,7 @@
- alpine <not-affected> (alpine uses the regex code from glibc, local fallback code not used, bug #778413)
- vigor 0.016-24 (unimportant; bug #778409)
[wheezy] - vigor 0.016-19+deb7u1
- - nvi <unfixed> (unimportant; bug #778412)
+ - nvi 1.81.6-13 (unimportant; bug #778412)
NOTE: No security impact in nvi/vigor and openrpt
NOTE: http://www.kb.cert.org/vuls/id/695940
NOTE: https://guidovranken.wordpress.com/2015/02/04/full-disclosure-heap-overflow-in-h-spencers-regex-library-on-32-bit-systems/
More information about the Secure-testing-commits
mailing list