[Secure-testing-commits] r36591 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-09-11 04:53:05 +0000 (Fri, 11 Sep 2015)
New Revision: 36591

Modified:
   data/CVE/list
Log:
Update references for freetype issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-09-11 04:52:57 UTC (rev 36590)
+++ data/CVE/list	2015-09-11 04:53:05 UTC (rev 36591)
@@ -9,10 +9,14 @@
 	- freetype <unfixed>
 	NOTE: https://launchpad.net/bugs/1492124
 	NOTE: http://www.ubuntu.com/usn/usn-2739-1/
+	NOTE: https://savannah.nongnu.org/bugs/?41590
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=df14e6c0b9592cbb24d5381dfc6106b14f915e75 (VER-2-5-3)
 CVE-2014-XXXX [use of uninitialized data]
 	- freetype <unfixed>
 	NOTE: https://launchpad.net/bugs/1449225
 	NOTE: http://www.ubuntu.com/usn/usn-2739-1/
+	NOTE: https://savannah.nongnu.org/bugs/?41309
+	NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=8b281f83e8516535756f92dbf90940ac44bd45e1 (VER-2-5-3)
 CVE-2015-6855 [commands which are illegal to sent to an ATAPI device should be rejected]
 	- qemu <unfixed>
 	- qemu-kvm <removed>