[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2014-10070/zsh

Wed Feb 28 21:18:08 UTC 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b41ab1dd by Salvatore Bonaccorso at 2018-02-28T22:17:49+01:00
Add CVE-2014-10070/zsh

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -73,7 +73,8 @@ CVE-2014-10071 (In exec.c in zsh before 5.0.7, there is a buffer overflow for ve
 	NOTE: https://sourceforge.net/p/zsh/code/ci/49a3086bb67575435251c70ee598e2fd406ef055
 	NOTE: Debian needed to add cherry-pick-9982ab6f-missing-changelog-entry
 CVE-2014-10070 (zsh before 5.0.7 allows evaluation of the initial values of integer ...)
-	TODO: check
+	- zsh 5.0.7-3
+	NOTE: https://sourceforge.net/p/zsh/code/ci/546203a770cec329e73781c3c8ab1078390aee72
 CVE-2018-7544
 	RESERVED
 CVE-2018-7543



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b41ab1dd35d10e7643964b99389c6e334cdafebf

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b41ab1dd35d10e7643964b99389c6e334cdafebf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180228/3333d160/attachment.html>
