[Secure-testing-commits] r45264 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Oct 12 18:46:46 UTC 2016
Author: carnil
Date: 2016-10-12 18:46:46 +0000 (Wed, 12 Oct 2016)
New Revision: 45264
Modified:
data/CVE/list
Log:
Report bugs for guile-2.0, #840556, #840555
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-12 18:45:32 UTC (rev 45263)
+++ data/CVE/list 2016-10-12 18:46:46 UTC (rev 45264)
@@ -1,10 +1,10 @@
CVE-2016-8606 [REPL server vulnerable to HTTP inter-protocol attacks]
- - guile-2.0 <unfixed> (low)
+ - guile-2.0 <unfixed> (low; bug #840555)
[jessie] - guile-2.0 <no-dsa> (Minor issue)
- guile-1.8 <not-affected> (repl server introduced in 2.0)
NOTE: Patch: http://git.savannah.gnu.org/cgit/guile.git/commit/?h=stable-2.0&id=08c021916dbd3a235a9f9cc33df4c418c0724e03
CVE-2016-8605 [Thread-unsafe umask modification]
- - guile-2.0 <unfixed> (low)
+ - guile-2.0 <unfixed> (low; bug #840556)
[jessie] - guile-2.0 <no-dsa> (Minor issue)
- guile-1.8 <not-affected> (repl server introduced in 2.0)
NOTE: http://bugs.gnu.org/24659
More information about the Secure-testing-commits
mailing list