[Secure-testing-commits] r30407 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Nov 28 08:48:14 UTC 2014
Author: carnil
Date: 2014-11-28 08:47:10 +0000 (Fri, 28 Nov 2014)
New Revision: 30407
Modified:
data/CVE/list
Log:
Add libyaml issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-28 08:41:07 UTC (rev 30406)
+++ data/CVE/list 2014-11-28 08:47:10 UTC (rev 30407)
@@ -1,3 +1,7 @@
+CVE-2014-XXXX [denial-of-service/application crash with untrusted yaml input]
+ - libyaml <unfixed>
+ - libyaml-libyaml-perl <unfixed>
+ NOTE: https://bitbucket.org/xi/libyaml/issue/10/wrapped-strings-cause-assert-failure
CVE-2014-9117 [CAPTCHA bypass]
- mantis <unfixed>
[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
More information about the Secure-testing-commits
mailing list