[Secure-testing-commits] r53078 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 1 14:34:11 UTC 2017
Author: carnil
Date: 2017-07-01 14:34:11 +0000 (Sat, 01 Jul 2017)
New Revision: 53078
Modified:
data/CVE/list
Log:
Mark CVE-2016-103{49,50} as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-01 14:21:04 UTC (rev 53077)
+++ data/CVE/list 2017-07-01 14:34:11 UTC (rev 53078)
@@ -6226,11 +6226,15 @@
CVE-2016-10350 (The archive_read_format_cab_read_header function in ...)
{DLA-1006-1}
- libarchive <unfixed> (bug #861609)
+ [stretch] - libarchive <no-dsa> (Minor issue)
+ [jessie] - libarchive <no-dsa> (Minor issue)
NOTE: https://github.com/libarchive/libarchive/issues/835
NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/88eb9e1d73fef46f04677c25b1697b8e25777ed3
CVE-2016-10349 (The archive_le32dec function in archive_endian.h in libarchive 3.2.2 ...)
{DLA-1006-1}
- libarchive <unfixed> (bug #861609)
+ [stretch] - libarchive <no-dsa> (Minor issue)
+ [jessie] - libarchive <no-dsa> (Minor issue)
NOTE: https://github.com/libarchive/libarchive/issues/834
NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/88eb9e1d73fef46f04677c25b1697b8e25777ed3
CVE-2017-8342 (Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing ...)
More information about the Secure-testing-commits
mailing list