[Secure-testing-commits] r47705 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-01-04 05:26:38 +0000 (Wed, 04 Jan 2017)
New Revision: 47705

Modified:
   data/CVE/list
Log:
Add CVE-2016-100{100,099}/borgbackup

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-01-03 21:10:13 UTC (rev 47704)
+++ data/CVE/list	2017-01-04 05:26:38 UTC (rev 47705)
@@ -277,9 +277,11 @@
 CVE-2016-10101
 	RESERVED
 CVE-2016-10100 (Borg (aka BorgBackup) before 1.0.9 has a flaw in the way duplicate ...)
-	TODO: check
+	- borgbackup 1.0.9-1
+	NOTE: https://borgbackup.readthedocs.io/en/stable/changes.html#pre-1-0-9-manifest-spoofing-vulnerability
 CVE-2016-10099 (Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic ...)
-	TODO: check
+	- borgbackup 1.0.9-1
+	NOTE: https://borgbackup.readthedocs.io/en/stable/changes.html#pre-1-0-9-manifest-spoofing-vulnerability
 CVE-2017-XXXX [wrestool: exploitable crash]
 	- icoutils <unfixed> (bug #850017)
 CVE-2016-XXXX [Use of uninitialized memory in unserialize()]