[Secure-testing-commits] r31536 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-01-19 18:39:57 +0000 (Mon, 19 Jan 2015)
New Revision: 31536

Modified:
   data/CVE/list
Log:
Add grep issue (heap buffer overrun)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-19 16:34:38 UTC (rev 31535)
+++ data/CVE/list	2015-01-19 18:39:57 UTC (rev 31536)
@@ -1,3 +1,8 @@
+CVE-2015-XXXX [heap buffer overrun]
+	- grep <unfixed>
+	NOTE: http://bugs.gnu.org/19563
+	NOTE: Upstream fix: http://git.sv.gnu.org/cgit/grep.git/commit/?id=83a95bd8c8561875b948cadd417c653dbe7ef2e2
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/01/18/12
 CVE-2014-XXXX [GTK+ improperly handled the menu key, possibly allowing lock screen bypass]
 	- gtk+3.0 <unfixed> (bug #759145)
 	NOTE: http://www.ubuntu.com/usn/USN-2475-1/