white at alioth.debian.org
2007-Nov-04 07:19 UTC
[Secure-testing-commits] r7202 - data/CVE
Author: white Date: 2007-11-04 07:19:58 +0000 (Sun, 04 Nov 2007) New Revision: 7202 Modified: data/CVE/list Log: cpio also has the vulnerable pax code, thus affected by CVE-2007-4476 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-11-03 10:31:03 UTC (rev 7201) +++ data/CVE/list 2007-11-04 07:19:58 UTC (rev 7202) @@ -3887,6 +3887,7 @@ NOT-FOR-US: Planet VC-200M VDSL2 router CVE-2007-4476 (Buffer overflow in the safer_name_suffix function in GNU tar has ...) - tar 1.18-1 (low; bug #441444) + - cpio <unfixed> (low; bug #449222) CVE-2007-4475 RESERVED CVE-2007-4474