[Secure-testing-commits] r37846 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Nov 24 07:33:37 UTC 2015
Author: carnil
Date: 2015-11-24 07:33:37 +0000 (Tue, 24 Nov 2015)
New Revision: 37846
Modified:
data/CVE/list
Log:
Add description for CVE-2015-7498, update TODO
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-24 07:33:28 UTC (rev 37845)
+++ data/CVE/list 2015-11-24 07:33:37 UTC (rev 37846)
@@ -2252,12 +2252,12 @@
NOTE: https://git.gnome.org/browse/libxml2/commit/?id=28cd9cb747a94483f4aea7f0968d202c20bb4cfc (v2.9.3)
NOTE: https://git.gnome.org/browse/libxml2/commit/?id=35bcb1d758ed70aa7b257c9c3b3ff55e54e3d0da (v2.9.3)
TODO: check affected versions
-CVE-2015-7498
+CVE-2015-7498 [processes entities after encoding conversion failures]
RESERVED
- libxml2 <unfixed>
NOTE: https://git.gnome.org/browse/libxml2/commit/?id=afd27c21f6b36e22682b7da20d726bce2dcb2f43 (v2.9.3)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=756527
- TODO: check affected versions
+ TODO: check affected versions (upstream bug not yet open)
CVE-2015-7497 [heap buffer overflow in xmlDictComputeFastQKey]
RESERVED
- libxml2 <unfixed>
More information about the Secure-testing-commits
mailing list