[Secure-testing-commits] r28561 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Sep 2 05:21:47 UTC 2014
Author: carnil
Date: 2014-09-02 05:21:47 +0000 (Tue, 02 Sep 2014)
New Revision: 28561
Modified:
data/CVE/list
Log:
Add CVE-2012-6656/glibc
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-09-02 05:02:43 UTC (rev 28560)
+++ data/CVE/list 2014-09-02 05:21:47 UTC (rev 28561)
@@ -483,6 +483,11 @@
NOT-FOR-US: Drupal addon
CVE-2014-5249 (SQL injection vulnerability in the "Biblio self autocomplete" ...)
NOT-FOR-US: Drupal addon
+CVE-2012-6656 [iconv() segfaults if the invalid multibyte character 0xffff is input when converting from IBM930]
+ - glibc 2.17-1
+ - eglibc <removed>
+ NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=14134
+ NOTE: https://sourceware.org/git/?p=glibc.git;a=commit;h=6e230d11837f3ae7b375ea69d7905f0d18eb79e5
CVE-2012-6655 [passes (encrypted) passwords as commandline arguments]
RESERVED
- accountsservice <unfixed> (low; bug #757912)
More information about the Secure-testing-commits
mailing list