[Secure-testing-commits] r31471 - data/CVE

Raphael Geissert geissert at moszumanska.debian.org
Sat Jan 17 23:37:06 UTC 2015


Author: geissert
Date: 2015-01-17 23:37:06 +0000 (Sat, 17 Jan 2015)
New Revision: 31471

Modified:
   data/CVE/list
Log:
libpng embedders are affected by the heap overflow


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-17 23:33:51 UTC (rev 31470)
+++ data/CVE/list	2015-01-17 23:37:06 UTC (rev 31471)
@@ -532,6 +532,10 @@
 CVE-2015-0973
 	RESERVED
 	- libpng <not-affected> (Affects 1.5.x and 1.6.x series)
+	[experimental] - libpng1.6 <unfixed> (bug #773823)
+	- iceweasel <unfixed>
+	- icedove <unfixed>
+	- texlive-bin 2014.20140926.35254-4 (bug #773824)
 	NOTE: http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt
 CVE-2015-0922 (McAfee ePolicy Orchestrator (ePO) before 4.6.9 and 5.x before 5.1.2 ...)
 	NOT-FOR-US: McAfee ePolicy Orchestrator




More information about the Secure-testing-commits mailing list