[Secure-testing-commits] r35678 - data/CVE

Raphaël Hertzog hertzog at moszumanska.debian.org
Fri Jul 24 14:51:50 UTC 2015


Author: hertzog
Date: 2015-07-24 14:51:50 +0000 (Fri, 24 Jul 2015)
New Revision: 35678

Modified:
   data/CVE/list
Log:
Filed bug for CVE-2015-3228/ghostscript and added link to test file

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-07-24 14:10:11 UTC (rev 35677)
+++ data/CVE/list	2015-07-24 14:51:50 UTC (rev 35678)
@@ -6185,10 +6185,10 @@
 	NOT-FOR-US: Fedora Atomic
 CVE-2015-3228 [Integer overflow]
 	RESERVED
-	- ghostscript <unfixed>
-	NOTE: http://bugs.ghostscript.com/show_bug.cgi?id=696041
+	- ghostscript <unfixed> (bug #793489)
 	NOTE: http://bugs.ghostscript.com/show_bug.cgi?id=696070
 	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=0c0b0859
+	NOTE: File to reproduce segfault with ps2pdf: http://bugs.ghostscript.com/attachment.cgi?id=11776
 CVE-2015-3227 [Denial of Service]
 	RESERVED
 	- rails <unfixed> (bug #790487)




More information about the Secure-testing-commits mailing list