[Secure-testing-commits] r43237 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 16 05:34:16 UTC 2016
Author: carnil
Date: 2016-07-16 05:34:02 +0000 (Sat, 16 Jul 2016)
New Revision: 43237
Modified:
data/CVE/list
Log:
Add upstream tag information for CVE-2015-8934
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-16 05:30:32 UTC (rev 43236)
+++ data/CVE/list 2016-07-16 05:34:02 UTC (rev 43237)
@@ -2502,11 +2502,11 @@
NOTE: https://bugs.php.net/bug.php?id=68978
NOTE: https://github.com/php/php-src/commit/996faf964bba1aec06b153b370a7f20d3dd2bb8b
NOTE: Fixed in 5.6.6, 5.5.22 and 5.4.38
-CVE-2015-8934
+CVE-2015-8934 [out of bounds heap read in RAR parser]
RESERVED
- libarchive 3.2.1-1
NOTE: https://github.com/libarchive/libarchive/issues/521
- NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/603454ec03040c29bd051fcc749e3c1433c11a8e
+ NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/603454ec03040c29bd051fcc749e3c1433c11a8e (v3.2.1)
CVE-2015-8933 [undefined behaviour / signed integer overflow in archive_read_format_tar_skip()]
RESERVED
- libarchive 3.2.0-2
More information about the Secure-testing-commits
mailing list