[Secure-testing-commits] r32145 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-02-11 06:03:13 +0000 (Wed, 11 Feb 2015)
New Revision: 32145

Modified:
   data/CVE/list
Log:
More freetype CVEs from external check

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-02-11 06:00:17 UTC (rev 32144)
+++ data/CVE/list	2015-02-11 06:03:13 UTC (rev 32145)
@@ -160,13 +160,19 @@
 	- freetype <unfixed>
 	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=2c4832d30939b45c05757f0a05128ce64c4cacc7
 	NOTE: https://code.google.com/p/google-security-research/issues/detail?id=151
-	TODO: check
 CVE-2014-9674 (The Mac_Read_POST_Resource function in base/ftobjs.c in FreeType ...)
-	TODO: check
+	- freetype <unfixed>
+	NOTE: http://code.google.com/p/google-security-research/issues/detail?id=153
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=240c94a185cd8dae7d03059abec8a5662c35ecd3
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=cd4a5a26e591d01494567df9dec7f72d59551f6e
 CVE-2014-9673 (Integer signedness error in the Mac_Read_POST_Resource function in ...)
-	TODO: check
+	- freetype <unfixed>
+	NOTE: http://code.google.com/p/google-security-research/issues/detail?id=154
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=35252ae9aa1dd9343e9f4884e9ddb1fee10ef415 
 CVE-2014-9672 (Array index error in the parse_fond function in base/ftmac.c in ...)
-	TODO: check
+	- freetype <unfixed>
+	NOTE: http://code.google.com/p/google-security-research/issues/detail?id=155
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=18a8f0d9943369449bc4de92d411c78fb08d616c
 CVE-2014-9671 (Off-by-one error in the pcf_get_properties function in pcf/pcfread.c ...)
 	TODO: check
 CVE-2014-9670 (Multiple integer signedness errors in the pcf_get_encodings function ...)