[Secure-testing-commits] r44630 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Sep 15 19:05:35 UTC 2016
Author: carnil
Date: 2016-09-15 19:05:35 +0000 (Thu, 15 Sep 2016)
New Revision: 44630
Modified:
data/CVE/list
Log:
Mark CVE-2016-7167/curl as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-15 18:50:07 UTC (rev 44629)
+++ data/CVE/list 2016-09-15 19:05:35 UTC (rev 44630)
@@ -2846,6 +2846,7 @@
CVE-2016-7167 [curl escape and unescape integer overflows]
RESERVED
- curl <unfixed>
+ [jessie] - curl <no-dsa> (Minor issue, can be fixed in point release or next DSA)
NOTE: Upstream advisory: https://curl.haxx.se/docs/adv_20160914.html
NOTE: Upstream patch: https://curl.haxx.se/CVE-2016-7167.patch
NOTE: Affected versions: libcurl 7.11.1 to and including 7.50.2
More information about the Secure-testing-commits
mailing list