[Secure-testing-commits] r38935 - in data: CVE DLA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 15 07:35:03 UTC 2016
Author: carnil
Date: 2016-01-15 07:35:03 +0000 (Fri, 15 Jan 2016)
New Revision: 38935
Modified:
data/CVE/list
data/DLA/list
Log:
Update information for CVE-2015-8708/claws-mail
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-15 06:18:55 UTC (rev 38934)
+++ data/CVE/list 2016-01-15 07:35:03 UTC (rev 38935)
@@ -2706,8 +2706,10 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/12/27/1
CVE-2015-8708 [for incomplete fix for CVE-2015-8614]
RESERVED
- {DLA-383-1}
- claws-mail <unfixed>
+ [jessie] - claws-mail <not-affected> (Incomplete fix for CVE-2015-8614 not applied)
+ [wheezy] - claws-mail <not-affected> (Incomplete fix for CVE-2015-8614 not applied)
+ [squeeze] - claws-mail <not-affected> (Incomplete fix for CVE-2015-8614 not applied; instead all fixed included in DLA-383-1)
- macopix <not-affected> (Incomplete fix not applied)
CVE-2015-8614 [no bounds checking on the output buffer in conv_jistoeuc, conv_euctojis, conv_sjistoeuc]
RESERVED
Modified: data/DLA/list
===================================================================
--- data/DLA/list 2016-01-15 06:18:55 UTC (rev 38934)
+++ data/DLA/list 2016-01-15 07:35:03 UTC (rev 38935)
@@ -11,7 +11,7 @@
{CVE-2015-8702}
[squeeze] - inspircd 1.1.22+dfsg-4+squeeze3
[12 Jan 2016] DLA-383-1 claws-mail - security update
- {CVE-2015-8614 CVE-2015-8708}
+ {CVE-2015-8614}
[squeeze] - claws-mail 3.7.6-4+squeeze2
[11 Jan 2016] DLA-382-1 sudo - security update
{CVE-2015-5602}
More information about the Secure-testing-commits
mailing list