[Secure-testing-commits] r31997 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Feb 5 20:28:08 UTC 2015
Author: carnil
Date: 2015-02-05 20:28:08 +0000 (Thu, 05 Feb 2015)
New Revision: 31997
Modified:
data/CVE/list
Log:
Add CVE-2014-9654/icu, left TODO item, needs to be verified
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-05 18:41:46 UTC (rev 31996)
+++ data/CVE/list 2015-02-05 20:28:08 UTC (rev 31997)
@@ -96,6 +96,11 @@
[wheezy] - cabextract <no-dsa> (Minor issue)
[squeeze] - cabextract <no-dsa> (Minor issue)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/03/12
+CVE-2014-9654
+ - icu <unfixed>
+ NOTE: https://ssl.icu-project.org/trac/changeset/36801
+ NOTE: https://chromium.googlesource.com/chromium/deps/icu/+/dd727641e190d60e4593bcb3a35c7f51eb4925c5
+ TODO: check
CVE-2014-9653 [Malformed elf file causes access to uninitialized memory]
- file <unfixed>
- php5 <not-affected> (readelf.c not used and even removed in 5.4.36-0+deb7u3)
More information about the Secure-testing-commits
mailing list