[Secure-testing-commits] r41061 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Apr 22 12:41:04 UTC 2016
Author: carnil
Date: 2016-04-22 12:41:04 +0000 (Fri, 22 Apr 2016)
New Revision: 41061
Modified:
data/CVE/list
Log:
Add bug reference for libgd2
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-22 11:36:05 UTC (rev 41060)
+++ data/CVE/list 2016-04-22 12:41:04 UTC (rev 41061)
@@ -2435,9 +2435,9 @@
- eglibc <removed>
[wheezy] - eglibc <no-dsa> (Minor issue, can be fixed via point release)
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=19879
-CVE-2016-3074
+CVE-2016-3074 [Signedness vulnerability causing heap overflow]
RESERVED
- - libgd2 <unfixed>
+ - libgd2 <unfixed> (bug #822242)
- php5 <unfixed> (unimportant)
- php7.0 <unfixed> (unimportant)
NOTE: PoC: https://github.com/dyntopia/exploits/tree/master/CVE-2016-3074
More information about the Secure-testing-commits
mailing list