[Secure-testing-commits] r40829 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Apr 9 06:35:18 UTC 2016
Author: carnil
Date: 2016-04-09 06:35:18 +0000 (Sat, 09 Apr 2016)
New Revision: 40829
Modified:
data/CVE/list
Log:
optipng/0.7.6 uploaded to unstble
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-08 21:10:14 UTC (rev 40828)
+++ data/CVE/list 2016-04-09 06:35:18 UTC (rev 40829)
@@ -34,11 +34,11 @@
REJECTED
CVE-2016-3982 [optipng: heap buffer overflow pngxrbmp.c bmp_rle4_fread]
{DSA-3546-1}
- - optipng <unfixed>
+ - optipng 0.7.6-1
NOTE: https://sourceforge.net/p/optipng/bugs/57/
CVE-2016-3981 [optipng: heap buffer overflow pngxrbmp.c bmp_read_rows]
{DSA-3546-1}
- - optipng <unfixed>
+ - optipng 0.7.6-1
NOTE: https://sourceforge.net/p/optipng/bugs/56/
CVE-2016-3977 [gif2rgb: heap buffer overflow]
RESERVED
@@ -4879,7 +4879,7 @@
CVE-2016-2191 [Invalid write while processing delta escapes without any boundary checking]
RESERVED
{DSA-3546-1}
- - optipng <unfixed> (bug #820068)
+ - optipng 0.7.6-1 (bug #820068)
NOTE: https://sourceforge.net/p/optipng/bugs/59/
NOTE: http://www.openwall.com/lists/oss-security/2016/04/04/2
CVE-2016-2190 [MSA-16-0011: Add no referrer to links with _blank target attribute]
@@ -14017,7 +14017,7 @@
NOTE: https://www.exploit-db.com/exploits/38447/
CVE-2015-7802 [Global buffer under-read]
RESERVED
- - optipng <unfixed> (unimportant; bug #801700)
+ - optipng 0.7.6-1 (unimportant; bug #801700)
NOTE: Not a security flaw as the under-read does not depend on input
CVE-2015-7801 [Use after free]
RESERVED
More information about the Secure-testing-commits
mailing list