[Secure-testing-commits] r42874 - data/CVE
Petter Reinholdtsen
pere at moszumanska.debian.org
Wed Jun 29 10:19:02 UTC 2016
Author: pere
Date: 2016-06-29 10:19:02 +0000 (Wed, 29 Jun 2016)
New Revision: 42874
Modified:
data/CVE/list
Log:
More info on open libarchive issues.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-29 09:53:43 UTC (rev 42873)
+++ data/CVE/list 2016-06-29 10:19:02 UTC (rev 42874)
@@ -1494,10 +1494,14 @@
RESERVED
- libarchive 3.2.0-2
NOTE: https://github.com/libarchive/libarchive/issues/539
+ NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/b31744df71084a8734f97199e42418f55d08c6c5
+ NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/c0c52e9aaafb0860c4151c5374372051e9354301
CVE-2015-8930
RESERVED
- libarchive 3.2.0-2
NOTE: https://github.com/libarchive/libarchive/issues/522
+ NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/39fc59391b7cf2a007bffce280c1e3e66674258f
+ NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/01cfbca4fdae1492a8a09c001b61bbca46f869f2
CVE-2015-8929
RESERVED
- libarchive 3.2.0-2
@@ -4863,7 +4867,7 @@
NOTE: http://blog.talosintel.com/2016/06/the-poisoned-archives.html
NOTE: http://www.talosintel.com/reports/TALOS-2016-0152/
NOTE: https://github.com/libarchive/libarchive/issues/718
- NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/e79ef306afe332faf22e9b442a2c6b59cb175573
+ NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/e79ef306afe332faf22e9b442a2c6b59cb175573 (notice introduction of UMAX_ENTRY)
CVE-2016-4299
RESERVED
CVE-2016-4298
More information about the Secure-testing-commits
mailing list