[Secure-testing-commits] r48524 - data/CVE

Salvatore Bonaccorso Sun, 29 Jan 2017 05:23:28 -0800

Author: carnil
Date: 2017-01-29 13:22:47 +0000 (Sun, 29 Jan 2017)
New Revision: 48524


Modified:
   data/CVE/list
Log:
CVE-2016-10173/ruby-minitrar assigned

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-01-29 13:18:49 UTC (rev 48523)
+++ data/CVE/list       2017-01-29 13:22:47 UTC (rev 48524)
@@ -52,6 +52,12 @@
        RESERVED
 CVE-2017-5589
        RESERVED
+CVE-2016-10173 [directory traversal vulnerability]
+       - ruby-minitar <unfixed>
+       - ruby-archive-tar-minitar <removed>
+       NOTE: https://github.com/halostatue/minitar/issues/16
+       NOTE: 
https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4
+       NOTE: https://bugzilla.opensuse.org/show_bug.cgi?id=1021740
 CVE-2016-10172 [heap oob read in read_new_config_info / open_utils.c]
        - wavpack <unfixed>
        NOTE: https://sourceforge.net/p/wavpack/mailman/message/35561951/


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r48524 - data/CVE

Reply via email to