[Secure-testing-commits] r31948 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Feb 4 05:36:39 UTC 2015
Author: carnil
Date: 2015-02-04 05:36:39 +0000 (Wed, 04 Feb 2015)
New Revision: 31948
Modified:
data/CVE/list
Log:
Two CVEs assigned for glibc
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-04 00:04:37 UTC (rev 31947)
+++ data/CVE/list 2015-02-04 05:36:39 UTC (rev 31948)
@@ -14,11 +14,14 @@
- linux-2.6 <removed>
NOTE: Upstream patch: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=df4d92549f23e1c037e83323aff58a21b3de7fe0 (v3.19-rc7)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/02/2
-CVE-2015-XXXX [heap buffer overflow in glibc swscanf]
+CVE-2015-1473 [ risk-management error]
- glibc <unfixed>
- eglibc <removed>
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=16618
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/01/8
+CVE-2015-1472 [incorrect second argument to realloc leads to a buffer overflow]
+ - glibc <unfixed>
+ - eglibc <removed>
+ NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=16618
CVE-2015-XXXX [Infinite loop in patch]
- patch 2.7.4-1 (bug #776271)
NOTE: Different from CVE-2014-9637
More information about the Secure-testing-commits
mailing list