[Secure-testing-commits] r33821 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Apr 25 07:00:50 UTC 2015
Author: carnil
Date: 2015-04-25 07:00:50 +0000 (Sat, 25 Apr 2015)
New Revision: 33821
Modified:
data/CVE/list
Log:
Update status for CVE-2015-2326/pcre3
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-25 05:09:20 UTC (rev 33820)
+++ data/CVE/list 2015-04-25 07:00:50 UTC (rev 33821)
@@ -2663,10 +2663,8 @@
- pcre3 <unfixed>
NOTE: http://bugs.exim.org/show_bug.cgi?id=1592
NOTE: http://vcs.pcre.org/viewvc?revision=1529&view=revision
- NOTE: Not sure if this affects as well pcre3 <= 8.35, reproducers
- NOTE: don't seem to lead to invalid reads. But OTOH has apparently
- NOTE: reproduced it on Vivid through Trusty
- TODO: check
+ NOTE: Reproduced invalid read in pcre3/2:8.35-3.3
+ NOTE: Issue introduced as a side effect of refactoring happened between 8.33 and 8.36
CVE-2015-2325 [heap buffer overflow in compile_branch()]
RESERVED
- pcre3 <unfixed> (bug #781795)
More information about the Secure-testing-commits
mailing list