[Secure-testing-commits] r48524 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 29 13:22:48 UTC 2017
Author: carnil
Date: 2017-01-29 13:22:47 +0000 (Sun, 29 Jan 2017)
New Revision: 48524
Modified:
data/CVE/list
Log:
CVE-2016-10173/ruby-minitrar assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-29 13:18:49 UTC (rev 48523)
+++ data/CVE/list 2017-01-29 13:22:47 UTC (rev 48524)
@@ -52,6 +52,12 @@
RESERVED
CVE-2017-5589
RESERVED
+CVE-2016-10173 [directory traversal vulnerability]
+ - ruby-minitar <unfixed>
+ - ruby-archive-tar-minitar <removed>
+ NOTE: https://github.com/halostatue/minitar/issues/16
+ NOTE: https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4
+ NOTE: https://bugzilla.opensuse.org/show_bug.cgi?id=1021740
CVE-2016-10172 [heap oob read in read_new_config_info / open_utils.c]
- wavpack <unfixed>
NOTE: https://sourceforge.net/p/wavpack/mailman/message/35561951/
More information about the Secure-testing-commits
mailing list