1
Candidate: CVE-2015-2311
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2311
5
https://github.com/sandstorm-io/capnproto/blob/master/security-advisories/2015-03-02-1-c%2B%2B-integer-underflow.md
7
Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before
8
0.5.1.1 might allow remote peers to cause a denial of service or possibly
9
obtain sensitive information from memory or execute arbitrary code via a
13
tyhicks> Fixed in 0.4.1.1, 0.5.1.1, and 0.6
15
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780566
17
Discovered-by: Kenton Varda
21
upstream_capnproto: released (0.5.1.1)
23
precise_capnproto: DNE
24
precise/esm_capnproto: DNE
25
trusty_capnproto: needed
26
vivid/stable-phone-overlay_capnproto: ignored (reached end-of-life)
27
vivid/ubuntu-core_capnproto: DNE
28
wily_capnproto: ignored (reached end-of-life)
29
xenial_capnproto: not-affected (0.5.3-2ubuntu1)
30
yakkety_capnproto: not-affected
31
zesty_capnproto: not-affected
32
artful_capnproto: not-affected
33
bionic_capnproto: not-affected
34
devel_capnproto: not-affected