[Secure-testing-commits] r50928 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Apr 22 17:56:20 UTC 2017
Author: carnil
Date: 2017-04-22 17:56:20 +0000 (Sat, 22 Apr 2017)
New Revision: 50928
Modified:
data/CVE/list
Log:
Add bug reference for CVE-2017-7892
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-22 17:06:11 UTC (rev 50927)
+++ data/CVE/list 2017-04-22 17:56:20 UTC (rev 50928)
@@ -493,7 +493,7 @@
CVE-2017-7893
RESERVED
CVE-2017-7892 (Sandstorm Cap'n Proto before 0.5.3.1 allows remote crashes related to a ...)
- - capnproto <unfixed> (unimportant)
+ - capnproto <unfixed> (unimportant; bug #860960)
NOTE: https://github.com/sandstorm-io/capnproto/blob/master/security-advisories/2017-04-17-0-apple-clang-elides-bounds-check.md
NOTE: Fixed by: https://github.com/sandstorm-io/capnproto/commit/52bc956459a5e83d7c31be95763ff6399e064ae4
NOTE: So far only Apple's compiler has been shown to apply the problematic optimization, fixed in 0.5.3.1 upstream
More information about the Secure-testing-commits
mailing list