[Secure-testing-commits] r20706 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2012-12-25 23:24:43 +0000 (Tue, 25 Dec 2012)
New Revision: 20706

Modified:
   data/CVE/list
Log:
add freetype issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-12-25 23:20:27 UTC (rev 20705)
+++ data/CVE/list	2012-12-25 23:24:43 UTC (rev 20706)
@@ -3138,12 +3138,21 @@
 CVE-2012-5671 (Heap-based buffer overflow in the dkim_exim_query_dns_txt function in ...)
 	{DSA-2566-1}
 	- exim4 4.80-5.1 (medium)
-CVE-2012-5670
+CVE-2012-5670 [Out-of-bounds write in _bdf_parse_glyphs]
 	RESERVED
-CVE-2012-5669
+	- freetype <unfixed>
+	NOTE: https://savannah.nongnu.org/bugs/?37907
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=7f2e4f4f553f6836be7683f66226afac3fa979b8
+CVE-2012-5669 [Out-of-bounds read in _bdf_parse_glyphs]
 	RESERVED
-CVE-2012-5668
+	- freetype <unfixed>
+	NOTE: https://savannah.nongnu.org/bugs/?37906
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=07bdb6e289c7954e2a533039dc93c1c136099d2d
+CVE-2012-5668 [NULL Pointer Dereference in bdf_free_font]
 	RESERVED
+	- freetype <unfixed>
+	NOTE: https://savannah.nongnu.org/bugs/?37905
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=9b6b5754b57c12b820e01305eb69b8863a161e5a
 CVE-2012-5667
 	RESERVED
 	- grep 2.11-1