[Secure-testing-commits] r42956 - data/CVE

Petter Reinholdtsen Fri, 01 Jul 2016 05:24:49 -0700

Author: pere
Date: 2016-07-01 12:24:31 +0000 (Fri, 01 Jul 2016)
New Revision: 42956


Modified:
   data/CVE/list
Log:
Investigated CVE-2015-8929 in libarchive, introduced in 3.2.0.

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-07-01 11:36:56 UTC (rev 42955)
+++ data/CVE/list       2016-07-01 12:24:31 UTC (rev 42956)
@@ -2112,10 +2112,13 @@
        NOTE: https://github.com/libarchive/libarchive/issues/522
        NOTE: Fixed by: 
https://github.com/libarchive/libarchive/commit/39fc59391b7cf2a007bffce280c1e3e66674258f
        NOTE: Fixed by: 
https://github.com/libarchive/libarchive/commit/01cfbca4fdae1492a8a09c001b61bbca46f869f2
-CVE-2015-8929
+CVE-2015-8929 [memory leak in __archive_read_get_extract]
        RESERVED
        - libarchive 3.2.0-2
+       [jessie] - libarchive <not-affected> (Introduced in 3.2.0)
+       [wheezy] - libarchive <not-affected> (Introduced in 3.2.0)
        NOTE: https://github.com/libarchive/libarchive/issues/517
+       NOTE: Fixed by: 
https://github.com/libarchive/libarchive/commit/d24e79e8f9547ae475a3a0c9516e079a14010838
 CVE-2015-8928
        RESERVED
        - libarchive 3.2.0-2


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r42956 - data/CVE

Reply via email to