[Secure-testing-commits] r37724 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Nov 16 16:19:46 UTC 2015


Author: carnil
Date: 2015-11-16 16:19:43 +0000 (Mon, 16 Nov 2015)
New Revision: 37724

Modified:
   data/CVE/list
Log:
Update CVE-2015-8106/latex2rtf

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-11-16 16:08:43 UTC (rev 37723)
+++ data/CVE/list	2015-11-16 16:19:43 UTC (rev 37724)
@@ -72,6 +72,9 @@
 CVE-2015-8106 [format string vulnerability]
 	RESERVED
 	- latex2rtf <unfixed>
+	[wheezy] - latex2rtf <not-affected> (Vulnerable code introduced later)
+	[squeeze] - latex2rtf <not-affected> (Vulnerable code introduced later)
+	NOTE: keywords command support introduced in http://sourceforge.net/p/latex2rtf/code/1152
 CVE-2015-8126 (Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE ...)
 	- libpng <unfixed> (bug #805113)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/11/12/2




More information about the Secure-testing-commits mailing list