[Secure-testing-commits] r45118 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Oct 7 05:00:22 UTC 2016


Author: carnil
Date: 2016-10-07 05:00:22 +0000 (Fri, 07 Oct 2016)
New Revision: 45118

Modified:
   data/CVE/list
Log:
CVE-2016-5418/libarchive fixed in unstable

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-10-07 04:28:43 UTC (rev 45117)
+++ data/CVE/list	2016-10-07 05:00:22 UTC (rev 45118)
@@ -9383,7 +9383,7 @@
 	NOTE: Wheezy: vulnerable code is in lib/sslgen.c
 CVE-2016-5418 (The sandboxing code in libarchive 3.2.0 and earlier mishandles ...)
 	{DSA-3677-1}
-	- libarchive <unfixed> (bug #837714)
+	- libarchive 3.2.1-4 (bug #837714)
 	NOTE: Centos patch: https://git.centos.org/blob/rpms!libarchive.git/9952851f8b327a8c93d26a5873c190c1fb09ae6c/SOURCES!libarchive-3.1.2-CVE-2016-5418.patch;jsessionid=1dexz8h9qdewibih5aonbu3
 	NOTE: Centos additional patch: https://git.centos.org/blob/rpms!libarchive.git/9952851f8b327a8c93d26a5873c190c1fb09ae6c/SOURCES!libarchive-3.1.2-CVE-2016-5418-variation.patch;jsessionid=1dexz8h9qdewibih5aonbu3
 	NOTE: Fixed by (for #744): https://github.com/libarchive/libarchive/commit/1fa9c7bf90f0862036a99896b0501c381584451a




More information about the Secure-testing-commits mailing list