[Secure-testing-commits] r55441 - in data: . CVE
Ola Lundqvist
opal at moszumanska.debian.org
Mon Sep 4 19:12:52 UTC 2017
Author: opal
Date: 2017-09-04 19:12:52 +0000 (Mon, 04 Sep 2017)
New Revision: 55441
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Triaged unrar-free.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-04 19:03:14 UTC (rev 55440)
+++ data/CVE/list 2017-09-04 19:12:52 UTC (rev 55441)
@@ -1,8 +1,10 @@
CVE-2017-14122 (unrar 0.0.1 (aka unrar-free or unrar-gpl) suffers from a stack-based ...)
- unrar-free <unfixed> (bug #874060)
+ [wheezy] - unrar-free <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2017/08/20/1
CVE-2017-14121 (The DecodeNumber function in unrarlib.c in unrar 0.0.1 (aka unrar-free ...)
- unrar-free <unfixed> (bug #874061)
+ [wheezy] - unrar-free <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2017/08/20/1
CVE-2017-14120 (unrar 0.0.1 (aka unrar-free or unrar-gpl) suffers from a directory ...)
- unrar-free <unfixed> (bug #874059)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-09-04 19:03:14 UTC (rev 55440)
+++ data/dla-needed.txt 2017-09-04 19:12:52 UTC (rev 55441)
@@ -170,6 +170,8 @@
--
tiff3 (Roberto C. Sánchez)
--
+unrar-free
+--
wireshark
NOTE: 2017-08-28: Contacted maintainer since most NOTE: issues affect
Jessie/Stretch as well
More information about the Secure-testing-commits
mailing list