[Secure-testing-commits] r42714 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jun 23 04:41:17 UTC 2016
Author: carnil
Date: 2016-06-23 04:41:17 +0000 (Thu, 23 Jun 2016)
New Revision: 42714
Modified:
data/CVE/list
Log:
Add three new libarchive issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-23 04:32:22 UTC (rev 42713)
+++ data/CVE/list 2016-06-23 04:41:17 UTC (rev 42714)
@@ -4365,12 +4365,21 @@
NOTE: https://raw.githubusercontent.com/esnet/security/master/cve-2016-4303/esnet-secadv-2016-0001.txt.asc
NOTE: https://github.com/esnet/iperf/commit/f01a9ca8f7e878e438a53687dabe30b7f7222912 (3.1.x)
NOTE: http://www.talosintel.com/reports/TALOS-2016-0164/
-CVE-2016-4302
+CVE-2016-4302 [Libarchive Rar RestartModel Heap Overflow]
RESERVED
-CVE-2016-4301
+ - libarchive <unfixed>
+ NOTE: http://blog.talosintel.com/2016/06/the-poisoned-archives.html
+ NOTE: http://www.talosintel.com/reports/TALOS-2016-0154/
+CVE-2016-4301 [mtree parse_device Stack Based Buffer Overflow]
RESERVED
-CVE-2016-4300
+ - libarchive <unfixed>
+ NOTE: http://blog.talosintel.com/2016/06/the-poisoned-archives.html
+ NOTE: http://www.talosintel.com/reports/TALOS-2016-0153/
+CVE-2016-4300 [7-Zip read_SubStreamsInfo Integer Overflow]
RESERVED
+ - libarchive <unfixed>
+ NOTE: http://blog.talosintel.com/2016/06/the-poisoned-archives.html
+ NOTE: http://www.talosintel.com/reports/TALOS-2016-0152/
CVE-2016-4299
RESERVED
CVE-2016-4298
More information about the Secure-testing-commits
mailing list