[Secure-testing-commits] r51135 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Apr 28 06:19:05 UTC 2017
Author: carnil
Date: 2017-04-28 06:19:05 +0000 (Fri, 28 Apr 2017)
New Revision: 51135
Modified:
data/CVE/list
Log:
Add gnulib issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-28 05:21:57 UTC (rev 51134)
+++ data/CVE/list 2017-04-28 06:19:05 UTC (rev 51135)
@@ -2207,8 +2207,11 @@
[wheezy] - linux <not-affected> (Introduced in 4.6)
NOTE: http://www.openwall.com/lists/oss-security/2017/04/25/4
NOTE: Fixed by: https://git.kernel.org/linus/4d6fa57b4dab0d77f4d8e9d9c73d1e63f6fe8fee
-CVE-2017-7476
+CVE-2017-7476 [Out-of-bounds write by setting a large TZ variable]
RESERVED
+ - gnulib <unfixed>
+ NOTE: Fixed by: http://git.savannah.gnu.org/gitweb/?p=gnulib.git;a=commitdiff;h=94e01571
+ TODO: check, possibly not-affected, since issues introduced with 4bc76593 and 4e6e16b3f.
CVE-2017-7475
RESERVED
CVE-2017-7474
More information about the Secure-testing-commits
mailing list