[Secure-testing-commits] r32559 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Mar 1 05:18:37 UTC 2015
Author: carnil
Date: 2015-03-01 05:18:31 +0000 (Sun, 01 Mar 2015)
New Revision: 32559
Modified:
data/CVE/list
Log:
Add CVE-2015-2158/pngcrush
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-01 05:14:14 UTC (rev 32558)
+++ data/CVE/list 2015-03-01 05:18:31 UTC (rev 32559)
@@ -1,3 +1,7 @@
+CVE-2015-2158
+ - pngcrush <unfixed>
+ NOTE: Fixed in 1.7.84 upstream, changelog does not mention it
+ NOTE: http://www.openwall.com/lists/oss-security/2015/02/28/6
CVE-2015-2157 [PuTTY fails to clear private key information from memory]
- putty <unfixed>
NOTE: http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/private-key-not-wiped-2.html
More information about the Secure-testing-commits
mailing list