[Secure-testing-commits] r24832 - data/CVE

Fri Dec 20 06:28:23 UTC 2013

Author: carnil
Date: 2013-12-20 06:28:23 +0000 (Fri, 20 Dec 2013)
New Revision: 24832

Modified:
   data/CVE/list
Log:
Add CVE-2013-6836/gnumeric from external check

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2013-12-19 22:51:17 UTC (rev 24831)
+++ data/CVE/list	2013-12-20 06:28:23 UTC (rev 24832)
@@ -1405,8 +1405,11 @@
 	RESERVED
 CVE-2013-6837
 	RESERVED
-CVE-2013-6836
+CVE-2013-6836 [heap-based buffer overflow in ms_escher_get_data function]
 	RESERVED
+	- gnumeric <unfixed>
+	NOTE: https://projects.gnome.org/gnumeric/announcements/1.12/gnumeric-1.12.9.shtml
+	TODO: check
 CVE-2013-6835
 	RESERVED
 CVE-2013-6834 (The ql_eioctl function in sys/dev/qlxgbe/ql_ioctl.c in the kernel in ...)


