[Secure-testing-commits] r38629 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 1 07:23:22 UTC 2016
Author: carnil
Date: 2016-01-01 07:23:22 +0000 (Fri, 01 Jan 2016)
New Revision: 38629
Modified:
data/CVE/list
Log:
Updat claws-mails CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-01 07:21:59 UTC (rev 38628)
+++ data/CVE/list 2016-01-01 07:23:22 UTC (rev 38629)
@@ -958,9 +958,12 @@
[wheezy] - stalin <no-dsa> (Minor issue)
[squeeze] - stalin <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2015/12/27/1
+CVE-2015-8708 [for incomplete fix for CVE-2015-8614]
+ - claws-mail <unfixed>
+ - macopix <not-affected> (Incomplete fix not applied)
CVE-2015-8614 [no bounds checking on the output buffer in conv_jistoeuc, conv_euctojis, conv_sjistoeuc]
RESERVED
- - claws-mail <unfixed>
+ - claws-mail 3.13.1-1
- macopix <unfixed>
NOTE: http://git.claws-mail.org/?p=claws.git;a=commit;h=d390fa07f5548f3173dd9cc13b233db5ce934c82 (3.13.1)
NOTE: http://git.claws-mail.org/?p=claws.git;a=commitdiff;h=e3ffcb455e0376053451ce968e6c71ef37708222 (not yet in tagged release)
More information about the Secure-testing-commits
mailing list