[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reference upstream bug for patch issue
Salvatore Bonaccorso
carnil at debian.org
Fri Apr 6 06:27:13 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2bbe79d9 by Salvatore Bonaccorso at 2018-04-06T07:26:40+02:00
Reference upstream bug for patch issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -128161,6 +128161,7 @@ CVE-2015-1418 (patch in FreeBSD 10.1 before 10.1-RELEASE-p17, 10.2 before ...)
NOT-FOR-US: patch as used in FreeBSD specifically
CVE-2018-1000156 [input validation vulnerability when processing patch files]
- patch <unfixed> (bug #894993)
+ NOTE: Upstream bug: https://savannah.gnu.org/bugs/?53566
NOTE: https://rachelbythebay.com/w/2018/04/05/bangpatch/
NOTE: https://twitter.com/kurtseifried/status/982028968877436928
NOTE: This CVE is specifically for GNU patch and relates to CVE-2015-1418
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2bbe79d9fdf001c2ccd8b06145f8f94bd37ccb83
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2bbe79d9fdf001c2ccd8b06145f8f94bd37ccb83
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180406/c397c7a6/attachment.html>
More information about the debian-security-tracker-commits
mailing list