[Secure-testing-commits] r58864 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Dec 23 12:24:09 UTC 2017
Author: carnil
Date: 2017-12-23 12:24:08 +0000 (Sat, 23 Dec 2017)
New Revision: 58864
Modified:
data/CVE/list
Log:
Add fixing version for upx-ucl issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-23 12:09:08 UTC (rev 58863)
+++ data/CVE/list 2017-12-23 12:24:08 UTC (rev 58864)
@@ -9788,7 +9788,7 @@
CVE-2017-16870 (** DISPUTED ** The UpdraftPlus plugin through 1.13.12 for WordPress ...)
NOT-FOR-US: UpdraftPlus plugin for WordPress
CVE-2017-16869 (** DISPUTED ** p_mach.cpp in UPX 3.94 allows remote attackers to cause ...)
- - upx-ucl <unfixed> (bug #882041; unimportant)
+ - upx-ucl 3.94-4 (bug #882041; unimportant)
NOTE: https://github.com/upx/upx/issues/146
NOTE: crash in CLI tool, no security impact
CVE-2017-16868 (In SWFTools 0.9.2, the wav_convert2mono function in lib/wav.c does not ...)
@@ -15309,7 +15309,7 @@
CVE-2017-15057
RESERVED
CVE-2017-15056 (p_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote ...)
- - upx-ucl <unfixed> (unimportant)
+ - upx-ucl 3.94-4 (unimportant)
NOTE: https://github.com/upx/upx/issues/128
NOTE: https://github.com/upx/upx/commit/ef336dbcc6dc8344482f8cf6c909ae96c3286317
NOTE: crash in CLI tool, no security impact
More information about the Secure-testing-commits
mailing list