[Secure-testing-commits] r13324 - data/CVE

Thu Nov 19 20:17:19 UTC 2009

Author: geissert
Date: 2009-11-19 20:17:19 +0000 (Thu, 19 Nov 2009)
New Revision: 13324

Modified:
   data/CVE/list
Log:
new libexif issue


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-11-19 19:56:45 UTC (rev 13323)
+++ data/CVE/list	2009-11-19 20:17:19 UTC (rev 13324)
@@ -165,8 +165,12 @@
 	RESERVED
 CVE-2009-3896
 	RESERVED
-CVE-2009-3895
+CVE-2009-3895 [libexif heap buffer overflow when processing certain images]
 	RESERVED
+	- libexif <unfixed> (medium; bug filed)
+	NOTE: it is said that only 0.6.18 is affected
+	NOTE: http://article.gmane.org/gmane.comp.graphics.libexif.devel/806
+	TODO: check
 CVE-2009-3894
 	RESERVED
 CVE-2009-3893


