[Secure-testing-commits] r31894 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2015-02-02 06:51:29 +0000 (Mon, 02 Feb 2015)
New Revision: 31894

Modified:
   data/CVE/list
Log:
new patch issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-02-01 23:00:07 UTC (rev 31893)
+++ data/CVE/list	2015-02-02 06:51:29 UTC (rev 31894)
@@ -1,3 +1,6 @@
+CVE-2015-XXXX [Infinite loop in patch]
+	- patch 2.7.4-1 (bug #776271)
+	NOTE: Different from CVE-2014-9637
 CVE-2015-1441 [SQL Injection vulnerability]
 	- piwigo <removed>
 	NOTE: http://piwigo.org/releases/2.7.3
@@ -8342,7 +8345,7 @@
 	[squeeze] - ffmpeg <end-of-life>
 	- libav <unfixed>
 	NOTE: ffmpeg: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=8c50704ebf1777bee76772c4835d9760b3721057
-	NOTE: libav: needed
+	NOTE: libav: needed, patch proposed at https://lists.libav.org/pipermail/libav-devel/2015-January/066433.html
 CVE-2014-7936 (Use-after-free vulnerability in the ZoomBubbleView::Close function in ...)
 	- chromium-browser 40.0.2214.91-1
 	[wheezy] - chromium-browser <end-of-life>