[Secure-testing-commits] r37719 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Nov 15 18:32:10 UTC 2015
Author: carnil
Date: 2015-11-15 18:32:10 +0000 (Sun, 15 Nov 2015)
New Revision: 37719
Modified:
data/CVE/list
Log:
One libxml2 issue checked, only present in unstable, #805146
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-15 18:26:35 UTC (rev 37718)
+++ data/CVE/list 2015-11-15 18:32:10 UTC (rev 37719)
@@ -6,8 +6,11 @@
TODO: check
CVE-2015-XXXX [Buffer overread with HTML parser in push mode in xmlSAX2TextNode]
- libxml2 <unfixed> (bug #805146)
+ [jessie] - libxml2 <not-affected> (Vulnerable code introduced later)
+ [wheezy] - libxml2 <not-affected> (Vulnerable code introduced later)
+ [squeeze] - libxml2 <not-affected> (Vulnerable code introduced later)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=756372
- TODO: check versions
+ NOTE: Introduced by: https://git.gnome.org/browse/libxml2/commit/?id=826bc320206f70fccd2941a77d363e95e8076898 (v2.9.2-rc1)
CVE-2015-XXXX [Buffer overread with XML parser in xmlNextChar]
- libxml2 <unfixed>
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=756263
More information about the Secure-testing-commits
mailing list