[Secure-testing-commits] r31660 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 25 09:34:27 UTC 2015
Author: carnil
Date: 2015-01-25 09:34:27 +0000 (Sun, 25 Jan 2015)
New Revision: 31660
Modified:
data/CVE/list
Log:
Add CVE-2015-1346, but keep TODO item to verify
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-25 09:10:27 UTC (rev 31659)
+++ data/CVE/list 2015-01-25 09:34:27 UTC (rev 31660)
@@ -347,6 +347,10 @@
NOTE: Upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=7c4f56070fde2367766fa1fb04852599b5e1ad35 (v3.18-rc1)
NOTE: (Possibly) introduced by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=483180281f0ac60d1138710eb21f4b9961901294
TODO: check in which version the issue was introduced exactly
+CVE-2015-1346 [unspecified vulnerability in Google V8]
+ - chromium-browser 40.0.2214.91-1
+ [squeeze] - chromium-browser <end-of-life>
+ TODO: check, also libv8-3.14?
CVE-2015-1345 [heap buffer overrun]
- grep <unfixed> (bug #776039)
NOTE: http://bugs.gnu.org/19563
More information about the Secure-testing-commits
mailing list