[Secure-testing-commits] r55840 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Sep 17 18:30:45 UTC 2017
Author: carnil
Date: 2017-09-17 18:30:44 +0000 (Sun, 17 Sep 2017)
New Revision: 55840
Modified:
data/CVE/list
Log:
mark CVE-2017-14502/libarchive as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-17 18:29:54 UTC (rev 55839)
+++ data/CVE/list 2017-09-17 18:30:44 UTC (rev 55840)
@@ -5,6 +5,8 @@
NOTE: https://github.com/libarchive/libarchive/issues/948
CVE-2017-14502 [out-of-bounds read in archive_read_format_rar_read_header()]
- libarchive <unfixed> (bug #875974)
+ [stretch] - libarchive <no-dsa> (Minor issue)
+ [jessie] - libarchive <no-dsa> (Minor issue)
NOTE: https://github.com/libarchive/libarchive/commit/5562545b5562f6d12a4ef991fae158bf4ccf92b6
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=573
CVE-2017-14501 [out-of-bounds read in archive_read_format_iso9660_read_header()]
More information about the Secure-testing-commits
mailing list