[Secure-testing-commits] r43586 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jul 29 05:15:42 UTC 2016
Author: carnil
Date: 2016-07-29 05:15:42 +0000 (Fri, 29 Jul 2016)
New Revision: 43586
Modified:
data/CVE/list
Log:
Better comment for CVE-2016-4553
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-29 05:00:41 UTC (rev 43585)
+++ data/CVE/list 2016-07-29 05:15:42 UTC (rev 43586)
@@ -6208,9 +6208,9 @@
[wheezy] - squid3 <not-affected> (issue introduced by CVE-2009-0801 fix, not applied in wheezy)
- squid <not-affected> (Does not affect 2.x)
NOTE: http://www.squid-cache.org/Advisories/SQUID-2016_7.txt
- NOTE: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-14039.patch
- NOTE: Fix relies on SBuf, not present in jessie nor wheezy. Maybe too intrusive
- NOTE: http://www.squid-cache.org/Versions/v3/3.4/changesets/squid-3.4-13240.patch
+ NOTE: Fix for 3.5.x: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-14039.patch
+ NOTE: Fix for 3.5 relies on SBuf.
+ NOTE: Fix for 3.4.x: http://www.squid-cache.org/Versions/v3/3.4/changesets/squid-3.4-13240.patch
CVE-2016-4535 (Integer signedness error in the AV engine before DAT 8145, as used in ...)
NOT-FOR-US: McAfee / AV engine
CVE-2016-4534 (The McAfee VirusScan Console (mcconsol.exe) in McAfee VirusScan ...)
More information about the Secure-testing-commits
mailing list