[Secure-testing-commits] r26475 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 9 06:42:11 UTC 2014
Author: carnil
Date: 2014-04-09 06:42:11 +0000 (Wed, 09 Apr 2014)
New Revision: 26475
Modified:
data/CVE/list
Log:
Add two json-c issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-04-09 05:04:59 UTC (rev 26474)
+++ data/CVE/list 2014-04-09 06:42:11 UTC (rev 26475)
@@ -8932,10 +8932,14 @@
CVE-2013-6372
RESERVED
- jenkins <not-affected> (Affected plugins are not shipped in Debian, bug #730457)
-CVE-2013-6371
+CVE-2013-6371 [hash collision DoS]
RESERVED
-CVE-2013-6370
+ - json-c <unfixed>
+ NOTE: https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015
+CVE-2013-6370 [buffer overflow if size_t is larger than int]
RESERVED
+ - json-c <unfixed>
+ NOTE: https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015
CVE-2013-6369 [stack-based buffer overflow flaw]
RESERVED
- jbigkit <unfixed> (bug #743960)
More information about the Secure-testing-commits
mailing list