[Secure-testing-commits] r37763 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-11-18 18:16:44 +0000 (Wed, 18 Nov 2015)
New Revision: 37763

Modified:
   data/CVE/list
Log:
libpng issues fixed in unstable with new upstream version

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-11-18 18:08:27 UTC (rev 37762)
+++ data/CVE/list	2015-11-18 18:16:44 UTC (rev 37763)
@@ -275,7 +275,7 @@
 	NOTE: Rendered non-exploitable by toolchain hardening
 CVE-2015-8126 (Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE ...)
 	{DLA-343-1}
-	- libpng <unfixed> (bug #805113)
+	- libpng 1.2.54-1 (bug #805113)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/11/12/2
 	NOTE: Fixed in 1.6.19, 1.5.24, 1.4.17, 1.2.54, and 1.0.64
 CVE-2015-8105 (Cross-site scripting (XSS) vulnerability in program/js/app.js in ...)
@@ -770,7 +770,7 @@
 CVE-2015-7981 [read out of bound]
 	RESERVED
 	{DLA-343-1}
-	- libpng <unfixed> (bug #803078)
+	- libpng 1.2.54-1 (bug #803078)
 	NOTE: http://sourceforge.net/p/libpng/bugs/241/
 	NOTE: http://sourceforge.net/p/libpng/code/ci/fbf0f024346ca0a4ffc64b082a95c6b6bb6d29c4/
 CVE-2015-7939