[Secure-testing-commits] r31117 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 4 04:39:48 UTC 2015
Author: carnil
Date: 2015-01-04 04:39:48 +0000 (Sun, 04 Jan 2015)
New Revision: 31117
Modified:
data/CVE/list
Log:
Add CVE-2014-9495, not-affecting libpng in packaged versions
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-04 04:35:41 UTC (rev 31116)
+++ data/CVE/list 2015-01-04 04:39:48 UTC (rev 31117)
@@ -6,6 +6,10 @@
- arj <unfixed> (bug #774435)
CVE-2015-XXXX [symlink directory traversal]
- arj <unfixed> (bug #774434)
+CVE-2014-9495 [Heap Overflow]
+ - libpng <not-affected> (Affects 1.5.x and 1.6.x series)
+ NOTE: http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt
+ NOTE: http://sourceforge.net/p/png-mng/mailman/message/33173461/
CVE-2014-9465
- zarafa <itp> (bug #658433)
CVE-2014-9433
More information about the Secure-testing-commits
mailing list