Author: carnil
Date: 2016-10-27 12:28:46 +0000 (Thu, 27 Oct 2016)
New Revision: 45660
Modified:
data/CVE/list
Log:
CVE-2016-8859/tre fixed in unstable, #842169
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-27 10:26:42 UTC (rev 45659)
+++ data/CVE/list 2016-10-27 12:28:46 UTC (rev 45660)
@@ -732,7 +732,7 @@
NOTE:
https://blogs.gentoo.org/ago/2016/10/20/imagemagick-memory-allocation-failure-in-acquiremagickmemory-memory-c-incomplete-fix-for-cve-2016-8862/
CVE-2016-8859 [Regex integer overflow in buffer size computations]
RESERVED
- - tre <unfixed> (bug #842169)
+ - tre 0.8.0-5 (bug #842169)
- musl <unfixed> (bug #842171)
NOTE: http://www.openwall.com/lists/oss-security/2016/10/19/1
NOTE: other issues may still be present in tre after this:
https://github.com/laurikari/tre/issues/37
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
