[Secure-testing-commits] r41310 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Apr 30 14:24:05 UTC 2016


Author: carnil
Date: 2016-04-30 14:24:05 +0000 (Sat, 30 Apr 2016)
New Revision: 41310

Modified:
   data/CVE/list
Log:
Add quassel issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-04-30 14:21:33 UTC (rev 41309)
+++ data/CVE/list	2016-04-30 14:24:05 UTC (rev 41310)
@@ -1,3 +1,9 @@
+CVE-2016-XXXX [denial of service]
+	- quassel 1:0.12.4-2
+	NOTE: https://github.com/quassel/quassel/blob/f64ac93/src/core/coreauthhandler.cpp#L100
+	NOTE: Introduced by: https://github.com/quassel/quassel/commit/d1bf207 (0.10.0)
+	NOTE: Fixed by: https://github.com/quassel/quassel/commit/e678873 (0.12.4)
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/04/30/2
 CVE-2016-4349 (Untrusted search path vulnerability in Cisco WebEx Productivity Tools ...)
 	NOT-FOR-US: Cisco
 CVE-2016-4352 [Mplayer/Mencoder integer overflow parsing gif files]




More information about the Secure-testing-commits mailing list