[Secure-testing-commits] r55509 - in data: . CVE
Chris Lamb
lamby at moszumanska.debian.org
Wed Sep 6 17:12:28 UTC 2017
Author: lamby
Date: 2017-09-06 17:12:28 +0000 (Wed, 06 Sep 2017)
New Revision: 55509
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Add patch link for CVE-1017-14120 (unrar-free) https://bugs.debian.org/874059
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-06 14:02:26 UTC (rev 55508)
+++ data/CVE/list 2017-09-06 17:12:28 UTC (rev 55509)
@@ -135,6 +135,7 @@
CVE-2017-14120 (unrar 0.0.1 (aka unrar-free or unrar-gpl) suffers from a directory ...)
- unrar-free <unfixed> (bug #874059)
NOTE: http://www.openwall.com/lists/oss-security/2017/08/20/1
+ NOTE: Patch in https://bugs.debian.org/874059
CVE-2017-14119 (In the EyesOfNetwork web interface (aka eonweb) 5.1-0, ...)
NOT-FOR-US: EyesOfNetwork (EON)
CVE-2017-14118 (In the EyesOfNetwork web interface (aka eonweb) 5.1-0, ...)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-09-06 14:02:26 UTC (rev 55508)
+++ data/dla-needed.txt 2017-09-06 17:12:28 UTC (rev 55509)
@@ -174,6 +174,7 @@
--
unrar-free (Chris Lamb)
NOTE: 20170906: No upstream patch yet, but I wrote similar ones for busybox, etc. (lamby)
+ NOTE: 20170906: Patch by me in https://bugs.debian.org/874059 (lamby)
--
wireshark
NOTE: 2017-08-28: Contacted maintainer since most NOTE: issues affect
More information about the Secure-testing-commits
mailing list