[Secure-testing-commits] r43311 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jul 20 17:36:30 UTC 2016
Author: carnil
Date: 2016-07-20 17:36:30 +0000 (Wed, 20 Jul 2016)
New Revision: 43311
Modified:
data/CVE/list
Log:
Add new libarchive issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-20 17:33:09 UTC (rev 43310)
+++ data/CVE/list 2016-07-20 17:36:30 UTC (rev 43311)
@@ -1,3 +1,8 @@
+CVE-2016-XXXX [Integer overflow when verifying filename size]
+ - libarchive 3.2.1-1
+ NOTE: https://github.com/libarchive/libarchive/issues/711
+ NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/3014e19820ea53c15c90f9d447ca3e668a0b76c6 (v3.2.1)
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/20/1
CVE-2016-6252 [incorrect integer handling]
- shadow <unfixed>
CVE-2016-6251 [potentially unsafe use of getlogin]
More information about the Secure-testing-commits
mailing list