[Secure-testing-commits] r42837 - data/CVE
Petter Reinholdtsen
pere at moszumanska.debian.org
Tue Jun 28 06:14:27 UTC 2016
Author: pere
Date: 2016-06-28 06:14:27 +0000 (Tue, 28 Jun 2016)
New Revision: 42837
Modified:
data/CVE/list
Log:
Move CVE-2015-XXXX entry for libarchive next to its supected duplicate CVE-2015-8915.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-27 22:13:39 UTC (rev 42836)
+++ data/CVE/list 2016-06-28 06:14:27 UTC (rev 42837)
@@ -1541,6 +1541,16 @@
RESERVED
- libarchive 3.2.0-2
NOTE: https://github.com/libarchive/libarchive/issues/503
+CVE-2015-XXXX [crash with malformed cpio archive]
+ - libarchive 3.2.0-2 (low; bug #784213)
+ [jessie] - libarchive <no-dsa> (Minor issue)
+ [wheezy] - libarchive <no-dsa> (Minor issue)
+ [squeeze] - libarchive <no-dsa> (Minor issue)
+ NOTE: https://github.com/libarchive/libarchive/issues/502
+ NOTE: https://github.com/libarchive/libarchive/commit/e6c9668f3202215ddb71617b41c19b6f05acf008
+ NOTE: https://github.com/libarchive/libarchive/commit/3865cf2bcb0eebc1baef28a7841b1cadae6e0f7c
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/04/1
+ NOTE: Same as https://github.com/libarchive/libarchive/issues/503 / CVE-2015-8915 according to https://bugzilla.redhat.com/show_bug.cgi?id=1216891
CVE-2015-8914 (The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 ...)
- neutron <unfixed>
[jessie] - neutron <no-dsa> (Minor issue)
@@ -32889,16 +32899,6 @@
NOTE: https://bugs.php.net/bug.php?id=69353
CVE-2015-3410
RESERVED
-CVE-2015-XXXX [crash with malformed cpio archive]
- - libarchive 3.2.0-2 (low; bug #784213)
- [jessie] - libarchive <no-dsa> (Minor issue)
- [wheezy] - libarchive <no-dsa> (Minor issue)
- [squeeze] - libarchive <no-dsa> (Minor issue)
- NOTE: https://github.com/libarchive/libarchive/issues/502
- NOTE: https://github.com/libarchive/libarchive/commit/e6c9668f3202215ddb71617b41c19b6f05acf008
- NOTE: https://github.com/libarchive/libarchive/commit/3865cf2bcb0eebc1baef28a7841b1cadae6e0f7c
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/04/1
- NOTE: Same as https://github.com/libarchive/libarchive/issues/503 / CVE-2015-8915 according to https://bugzilla.redhat.com/show_bug.cgi?id=1216891
CVE-2015-3427 (Quassel before 0.12.2 does not properly re-initialize the database ...)
{DSA-3258-1}
- quassel 1:0.10.0-2.4 (bug #783926)
More information about the Secure-testing-commits
mailing list