Author: bigon
Date: 2012-12-07 14:52:13 +0000 (Fri, 07 Dec 2012)
New Revision: 20624
Modified:
data/CVE/list
Log:
CVE-2012-6063: Already fixed in libssh 0.4.5-3+squeeze1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-12-07 13:12:26 UTC (rev 20623)
+++ data/CVE/list 2012-12-07 14:52:13 UTC (rev 20624)
@@ -12,6 +12,10 @@
NOT-FOR-US: CMS Made Simple
CVE-2012-6063 (Double free vulnerability in the sftp_mkdir function in sftp.c
in ...)
- libssh 0.5.3-1
+ [squeeze] - libssh 0.4.5-3+squeeze1
+ NOTE: Fix included in CVE-2012-4559 patch
+ NOTE: https://red.libssh.org/issues/84
+ NOTE:
http://git.libssh.org/projects/libssh.git/commit/?h=v0-5&id=4d8420f3282ed07fc99fc5e930c17df27ef1e9b2
CVE-2012-6062 (The dissect_rtcp_app function in epan/dissectors/packet-rtcp.c
in the ...)
- wireshark <unfixed> (unimportant)
NOTE: not suitable for code injection
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
