[Secure-testing-commits] r51247 - data/CVE

Nicholas Luedtke nluedtke-guest at moszumanska.debian.org
Mon May 1 17:30:24 UTC 2017


Author: nluedtke-guest
Date: 2017-05-01 17:30:24 +0000 (Mon, 01 May 2017)
New Revision: 51247

Modified:
   data/CVE/list
Log:
Clarify CVE-2014-9087

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-01 16:28:22 UTC (rev 51246)
+++ data/CVE/list	2017-05-01 17:30:24 UTC (rev 51247)
@@ -80171,7 +80171,8 @@
 CVE-2014-9087 (Integer underflow in the ksba_oid_to_str function in Libksba before ...)
 	{DSA-3078-1 DLA-141-1}
 	- libksba 1.3.2-1 (bug #770972)
-	- gnupg2 <not-affected> (Affects only 2.1 and betas)
+	- gnupg2 <not-affected> (Fixed before entering unstable)
+	[jessie] - gnupg2 <not-affected> (Affects only 2.1)
 	NOTE: http://lists.gnupg.org/pipermail/gnupg-announce/2014q4/000359.html
 	NOTE: Upstream commit: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=commit;h=f715b9e156dfa99ae829fc694e5a0abd23ef97d7
 CVE-2014-9157 (Format string vulnerability in the yyerror function in ...)




More information about the Secure-testing-commits mailing list