[Secure-testing-commits] r42956 - data/CVE
Petter Reinholdtsen
pere at moszumanska.debian.org
Fri Jul 1 12:24:31 UTC 2016
Author: pere
Date: 2016-07-01 12:24:31 +0000 (Fri, 01 Jul 2016)
New Revision: 42956
Modified:
data/CVE/list
Log:
Investigated CVE-2015-8929 in libarchive, introduced in 3.2.0.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-01 11:36:56 UTC (rev 42955)
+++ data/CVE/list 2016-07-01 12:24:31 UTC (rev 42956)
@@ -2112,10 +2112,13 @@
NOTE: https://github.com/libarchive/libarchive/issues/522
NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/39fc59391b7cf2a007bffce280c1e3e66674258f
NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/01cfbca4fdae1492a8a09c001b61bbca46f869f2
-CVE-2015-8929
+CVE-2015-8929 [memory leak in __archive_read_get_extract]
RESERVED
- libarchive 3.2.0-2
+ [jessie] - libarchive <not-affected> (Introduced in 3.2.0)
+ [wheezy] - libarchive <not-affected> (Introduced in 3.2.0)
NOTE: https://github.com/libarchive/libarchive/issues/517
+ NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/d24e79e8f9547ae475a3a0c9516e079a14010838
CVE-2015-8928
RESERVED
- libarchive 3.2.0-2
More information about the Secure-testing-commits
mailing list