[Secure-testing-commits] r32269 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Feb 17 05:24:23 UTC 2015


Author: carnil
Date: 2015-02-17 05:24:22 +0000 (Tue, 17 Feb 2015)
New Revision: 32269

Modified:
   data/CVE/list
Log:
Add bug reference for gnupg2, #778577

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-02-16 21:10:23 UTC (rev 32268)
+++ data/CVE/list	2015-02-17 05:24:22 UTC (rev 32269)
@@ -4,18 +4,16 @@
 	- icu <unfixed> (low; bug #778511)
 CVE-2015-1607 [memcpy with overlapping ranges, resulting from incorrect bitwise left shifts]
 	[experimental] - gnupg2 2.1.2-1
-	- gnupg2 <unfixed>
+	- gnupg2 <unfixed> (bug #778577)
 	- gnupg <undetermined>
 	NOTE: https://blog.fuzzing-project.org/5-Multiple-issues-in-GnuPG-found-through-keyring-fuzzing-TFPA-0012015.html
 	NOTE: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=2183683bd633818dd031b090b5530951de76f392
-	TODO: check
 CVE-2015-1606 [use after free resulting from failure to skip invalid packets]
 	[experimental] - gnupg2 2.1.2-1
-	- gnupg2 <unfixed>
+	- gnupg2 <unfixed> (bug #778577)
 	- gnupg <undetermined>
 	NOTE: https://blog.fuzzing-project.org/5-Multiple-issues-in-GnuPG-found-through-keyring-fuzzing-TFPA-0012015.html
 	NOTE: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=f0f71a721ccd7ab9e40b8b6b028b59632c0cc648
-	TODO: check
 CVE-2015-1604
 	NOT-FOR-US: Landsknecht Adminsystems
 CVE-2015-1603




More information about the Secure-testing-commits mailing list