[Secure-testing-commits] r58864 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Dec 23 12:24:09 UTC 2017


Author: carnil
Date: 2017-12-23 12:24:08 +0000 (Sat, 23 Dec 2017)
New Revision: 58864

Modified:
   data/CVE/list
Log:
Add fixing version for upx-ucl issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-23 12:09:08 UTC (rev 58863)
+++ data/CVE/list	2017-12-23 12:24:08 UTC (rev 58864)
@@ -9788,7 +9788,7 @@
 CVE-2017-16870 (** DISPUTED ** The UpdraftPlus plugin through 1.13.12 for WordPress ...)
 	NOT-FOR-US: UpdraftPlus plugin for WordPress
 CVE-2017-16869 (** DISPUTED ** p_mach.cpp in UPX 3.94 allows remote attackers to cause ...)
-	- upx-ucl <unfixed> (bug #882041; unimportant)
+	- upx-ucl 3.94-4 (bug #882041; unimportant)
 	NOTE: https://github.com/upx/upx/issues/146
 	NOTE: crash in CLI tool, no security impact
 CVE-2017-16868 (In SWFTools 0.9.2, the wav_convert2mono function in lib/wav.c does not ...)
@@ -15309,7 +15309,7 @@
 CVE-2017-15057
 	RESERVED
 CVE-2017-15056 (p_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote ...)
-	- upx-ucl <unfixed> (unimportant)
+	- upx-ucl 3.94-4 (unimportant)
 	NOTE: https://github.com/upx/upx/issues/128
 	NOTE: https://github.com/upx/upx/commit/ef336dbcc6dc8344482f8cf6c909ae96c3286317
 	NOTE: crash in CLI tool, no security impact




More information about the Secure-testing-commits mailing list