[Secure-testing-commits] r51247 - data/CVE
Nicholas Luedtke
nluedtke-guest at moszumanska.debian.org
Mon May 1 17:30:24 UTC 2017
Author: nluedtke-guest
Date: 2017-05-01 17:30:24 +0000 (Mon, 01 May 2017)
New Revision: 51247
Modified:
data/CVE/list
Log:
Clarify CVE-2014-9087
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-01 16:28:22 UTC (rev 51246)
+++ data/CVE/list 2017-05-01 17:30:24 UTC (rev 51247)
@@ -80171,7 +80171,8 @@
CVE-2014-9087 (Integer underflow in the ksba_oid_to_str function in Libksba before ...)
{DSA-3078-1 DLA-141-1}
- libksba 1.3.2-1 (bug #770972)
- - gnupg2 <not-affected> (Affects only 2.1 and betas)
+ - gnupg2 <not-affected> (Fixed before entering unstable)
+ [jessie] - gnupg2 <not-affected> (Affects only 2.1)
NOTE: http://lists.gnupg.org/pipermail/gnupg-announce/2014q4/000359.html
NOTE: Upstream commit: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=commit;h=f715b9e156dfa99ae829fc694e5a0abd23ef97d7
CVE-2014-9157 (Format string vulnerability in the yyerror function in ...)
More information about the Secure-testing-commits
mailing list