[Secure-testing-commits] r37844 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-11-24 07:30:27 +0000 (Tue, 24 Nov 2015)
New Revision: 37844

Modified:
   data/CVE/list
Log:
Add description for CVE-2015-7497, details unknown, upstream bug not yet open

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-11-24 07:28:59 UTC (rev 37843)
+++ data/CVE/list	2015-11-24 07:30:27 UTC (rev 37844)
@@ -2258,12 +2258,12 @@
 	NOTE: https://git.gnome.org/browse/libxml2/commit/?id=afd27c21f6b36e22682b7da20d726bce2dcb2f43 (v2.9.3)
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=756527
 	TODO: check affected versions
-CVE-2015-7497
+CVE-2015-7497 [heap buffer overflow in xmlDictComputeFastQKey]
 	RESERVED
 	- libxml2 <unfixed>
 	NOTE: https://git.gnome.org/browse/libxml2/commit/?id=6360a31a84efe69d155ed96306b9a931a40beab9 (v2.9.3)
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=756528
-	TODO: check affected versions
+	TODO: check affected versions (upstream bug not yet open)
 CVE-2015-7496 [gdm3: crash when holding Escape in lock screen]
 	RESERVED
 	- gdm3 3.18.2-1