[Secure-testing-commits] r32420 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Feb 22 20:58:43 UTC 2015


Author: carnil
Date: 2015-02-22 20:58:43 +0000 (Sun, 22 Feb 2015)
New Revision: 32420

Modified:
   data/CVE/list
Log:
Add new issue in glibc, not checked, left TODO item

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-02-22 19:17:14 UTC (rev 32419)
+++ data/CVE/list	2015-02-22 20:58:43 UTC (rev 32420)
@@ -1,3 +1,10 @@
+CVE-2015-XXXX [_IO_wstr_overflow integer overflow]
+	- eglibc <removed>
+	- glibc <unfixed>
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=17269
+	NOTE: Fixed by: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=bdf1ff052a8e23d637f2c838fa5642d78fcedc33
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/22/15
+	TODO: check
 CVE-2015-XXXX [Potential XSS vulnerability when rendering some flash messages]
 	- redmine 3.0~20140825-5
 	NOTE: https://www.redmine.org/projects/redmine/wiki/Changelog_2_6




More information about the Secure-testing-commits mailing list