[Secure-testing-commits] r36508 - data/CVE
Scott Kitterman
kitterman at moszumanska.debian.org
Sat Sep 5 20:26:43 UTC 2015
Author: kitterman
Date: 2015-09-05 20:26:43 +0000 (Sat, 05 Sep 2015)
New Revision: 36508
Modified:
data/CVE/list
Log:
Add jessie to libvpx releases not affected by CVE-2015-4485/CVE-2015-4486.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-05 20:24:29 UTC (rev 36507)
+++ data/CVE/list 2015-09-05 20:26:43 UTC (rev 36508)
@@ -5734,12 +5734,14 @@
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-90/
CVE-2015-4486 (The decrease_ref_count function in libvpx in Mozilla Firefox before ...)
- libvpx 1.4.0-1
+ [jessie] - libvpx <not-affected> (Vulnerale code not present)
[wheezy] - libvpx <not-affected> (Vulnerale code not present)
[squeeze] - libvpx <not-affected> (Vulnerale code not present)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-89/
NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1177948 is restricted
CVE-2015-4485 (Heap-based buffer overflow in the resize_context_buffers function in ...)
- libvpx 1.4.0-1
+ [jessie] - libvpx <not-affected> (Vulnerale code not present)
[wheezy] - libvpx <not-affected> (Vulnerale code not present)
[squeeze] - libvpx <not-affected> (Vulnerale code not present)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-89/
More information about the Secure-testing-commits
mailing list