[Secure-testing-commits] r42845 - data/CVE
Petter Reinholdtsen
pere at moszumanska.debian.org
Tue Jun 28 08:24:18 UTC 2016
Author: pere
Date: 2016-06-28 08:24:18 +0000 (Tue, 28 Jun 2016)
New Revision: 42845
Modified:
data/CVE/list
Log:
CVE-2016-4301 do not affect Jessie and Wheezy.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-28 08:12:02 UTC (rev 42844)
+++ data/CVE/list 2016-06-28 08:24:18 UTC (rev 42845)
@@ -4828,6 +4828,8 @@
CVE-2016-4301 [mtree parse_device Stack Based Buffer Overflow]
RESERVED
- libarchive 3.2.1-1
+ [jessie] - libarchive <not-affected> (Introduced in 3.2.0)
+ [wheezy] - libarchive <not-affected> (Introduced in 3.2.0)
NOTE: http://blog.talosintel.com/2016/06/the-poisoned-archives.html
NOTE: http://www.talosintel.com/reports/TALOS-2016-0153/
NOTE: https://github.com/libarchive/libarchive/pull/715
More information about the Secure-testing-commits
mailing list