[Secure-testing-commits] r36345 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Aug 27 18:41:46 UTC 2015
Author: carnil
Date: 2015-08-27 18:41:46 +0000 (Thu, 27 Aug 2015)
New Revision: 36345
Modified:
data/CVE/list
Log:
Add CVE-2015-4497 and CVE-2015-4498
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-27 17:51:36 UTC (rev 36344)
+++ data/CVE/list 2015-08-27 18:41:46 UTC (rev 36345)
@@ -5200,10 +5200,16 @@
RESERVED
CVE-2015-4499
RESERVED
-CVE-2015-4498
+CVE-2015-4498 [Add-on notification bypass through data URLs]
RESERVED
-CVE-2015-4497
+ - iceweasel <unfixed>
+ [squeeze] - iceweasel <end-of-life> (Not supported in Squeeze LTS)
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-95
+CVE-2015-4497 [Use-after-free when resizing canvas element during restyling]
RESERVED
+ - iceweasel <unfixed>
+ [squeeze] - iceweasel <end-of-life> (Not supported in Squeeze LTS)
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-94/
CVE-2015-4496 (Multiple integer overflows in libstagefright in Mozilla Firefox before ...)
- iceweasel 38.0-1
[wheezy] - iceweasel 38.2.0esr-1~deb7u1
More information about the Secure-testing-commits
mailing list