Path: csiph.com!weretis.net!feeder6.news.weretis.net!nntp.club.cc.cmu.edu!micro-heart-of-gold.mit.edu!bloom-beacon.mit.edu!bloom-beacon.mit.edu!171.64.64.130.MISMATCH!usenet.stanford.edu!not-for-mail
From: Petr Pisar <ppisar@redhat.com>
Newsgroups: gnu.utils.bug
Subject: Re: Vulnerability Report on Sharutils 4.15.2
Date: Mon, 26 Mar 2018 12:28:46 +0000 (UTC)
Lines: 9
Approved: bug-gnu-utils@gnu.org
Message-ID: <mailman.11254.1522069595.27995.bug-gnu-utils@gnu.org>
References: <47a93dc0-b0f9-9dc7-593e-ce7f96f56e19@gmail.com> <20180325175147.GA13587@eldamar.local> <CAFkjv+vMm9SB+U04_97D+To9DUaOBS2O6uLBxM1=PsPYGdn8qg@mail.gmail.com>
NNTP-Posting-Host: lists.gnu.org
X-Trace: usenet.stanford.edu 1522069596 20803 208.118.235.17 (26 Mar 2018 13:06:36 GMT)
X-Complaints-To: action@cs.stanford.edu
To: bug-gnu-utils@gnu.org
Envelope-to: bug-gnu-utils@gnu.org
X-Injected-Via-Gmane: http://gmane.org/
User-Agent: slrn/1.0.3 (Linux)
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] [fuzzy]
X-Received-From: 195.159.176.226
X-Mailman-Approved-At: Mon, 26 Mar 2018 09:06:34 -0400
X-BeenThere: bug-gnu-utils@gnu.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: Bug reports for the GNU utilities <bug-gnu-utils.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-gnu-utils>, <mailto:bug-gnu-utils-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/bug-gnu-utils/>
List-Post: <mailto:bug-gnu-utils@gnu.org>
List-Help: <mailto:bug-gnu-utils-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-gnu-utils>, <mailto:bug-gnu-utils-request@gnu.org?subject=subscribe>
Xref: csiph.com gnu.utils.bug:2234

On 2018-03-25, Mohd Hanafie <nafiez.skins@gmail.com> wrote:
> Issue has been resolved and CVE has been assigned, CVE-2018-1000097.
>
It's still not resolved in the upstream. I.e. latest upstream 4.15.2 release
does not contain the fix.

-- Petr