[Secure-testing-commits] r29030 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Thu Sep 25 08:18:04 UTC 2014
Author: hertzog
Date: 2014-09-25 08:18:04 +0000 (Thu, 25 Sep 2014)
New Revision: 29030
Modified:
data/CVE/list
Log:
Add severity and bug for CVE-2014-3158/ppp
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-09-25 08:17:55 UTC (rev 29029)
+++ data/CVE/list 2014-09-25 08:18:04 UTC (rev 29030)
@@ -9456,9 +9456,10 @@
NOT-FOR-US: Android
CVE-2014-3158
RESERVED
- - ppp <unfixed>
+ - ppp <unfixed> (medium; bug #762789)
NOTE: https://github.com/paulusmack/ppp/commit/7658e8257183f062dc01f87969c140707c7e52cb
NOTE: http://marc.info/?l=linux-ppp&m=140764978420764
+ NOTE: No known exploit yet but potential local privilege escalation to root for users in "dip" group
CVE-2014-3157 (Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer ...)
{DSA-2959-1}
- chromium-browser 35.0.1916.153-1
More information about the Secure-testing-commits
mailing list