[Secure-testing-commits] r52778 - data/CVE
Thorsten Alteholz
alteholz at moszumanska.debian.org
Wed Jun 21 12:18:08 UTC 2017
Author: alteholz
Date: 2017-06-21 12:18:08 +0000 (Wed, 21 Jun 2017)
New Revision: 52778
Modified:
data/CVE/list
Log:
mark CVE-2017-5977 as <no-das> in Wheezy as well
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-21 12:04:40 UTC (rev 52777)
+++ data/CVE/list 2017-06-21 12:18:08 UTC (rev 52778)
@@ -11190,6 +11190,7 @@
- zziplib <unfixed> (bug #864150; bug #854727)
[stretch] - zziplib <no-dsa> (Minor issue)
[jessie] - zziplib <no-dsa> (Minor issue)
+ [wheezy] - zziplib <no-dsa> (Minor issue)
NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-invalid-memory-read-in-zzip_mem_entry_extra_block-memdisk-c/
CVE-2017-5976 (Heap-based buffer overflow in the zzip_mem_entry_extra_block function ...)
{DSA-3878-1 DLA-994-1}
More information about the Secure-testing-commits
mailing list