[Secure-testing-commits] r48052 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Jan 14 16:29:21 UTC 2017 

Author: carnil
Date: 2017-01-14 16:29:20 +0000 (Sat, 14 Jan 2017)
New Revision: 48052

Modified:
   data/CVE/list
Log:
Reported bug for libgit2

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-01-14 16:06:40 UTC (rev 48051)
+++ data/CVE/list	2017-01-14 16:29:20 UTC (rev 48052)
@@ -340,27 +340,27 @@
 	RESERVED
 CVE-2017-5339 [http: correct the expected error for RC4]
 	RESERVED
-	- libgit2 <unfixed>
+	- libgit2 <unfixed> (bug #851406)
 	NOTE: https://github.com/libgit2/libgit2/commit/3829ba2e710553893faf6336cc6b2f3fc17a293e (v0.25.1)
 	NOTE: https://github.com/libgit2/libgit2/commit/d3cb8f64cde3b84c3d1543f122f989aeb2f6a69e (v0.24.1)
 CVE-2017-5338 [http: perform 'badssl' check also via certificate callback]
 	RESERVED
-	- libgit2 <unfixed>
+	- libgit2 <unfixed> (bug #851406)
 	NOTE: https://github.com/libgit2/libgit2/commit/98d66240ecb7765e191da19b535c75c92ccc90fe (v0.25.1)
 	NOTE: https://github.com/libgit2/libgit2/commit/ca531956619f021913ac01669b3818a705b7b676 (v0.24.6)
 CVE-2016-10130 [http: check certificate validity before clobbering the error variable]
 	RESERVED
-	- libgit2 <unfixed>
+	- libgit2 <unfixed> (bug #851406)
 	NOTE: https://github.com/libgit2/libgit2/commit/9a64e62f0f20c9cf9b2e1609f037060eb2d8eb22 (v0.25.1)
 	NOTE: https://github.com/libgit2/libgit2/commit/b5c6a1b407b7f8b952bded2789593b68b1876211 (v0.24.6)
 CVE-2016-10129 [smart_pkt: treat empty packet lines as error]
 	RESERVED
-	- libgit2 <unfixed>
+	- libgit2 <unfixed> (bug #851406)
 	NOTE: https://github.com/libgit2/libgit2/commit/2fdef641fd0dd2828bd948234ae86de75221a11a (v0.25.1)
 	NOTE: https://github.com/libgit2/libgit2/commit/84d30d569ada986f3eef527cbdb932643c2dd037 (v0.24.6)
 CVE-2016-10128 [smart_pkt: verify packet length exceeds PKT_LEN_SIZE]
 	RESERVED
-	- libgit2 <unfixed>
+	- libgit2 <unfixed> (bug #851406)
 	NOTE: https://github.com/libgit2/libgit2/commit/66e3774d279672ee51c3b54545a79d20d1ada834 (v0.25.1)
 	NOTE: https://github.com/libgit2/libgit2/commit/4ac39c76c0153d1ee6889a0984c39e97731684b2 (v0.24.6)
 CVE-2016-10126 (Splunk Web in Splunk Enterprise 5.0.x before 5.0.17, 6.0.x before ...)

More information about the Secure-testing-commits mailing list