[Secure-testing-commits] r47111 - in data: CVE DSA
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Dec 15 18:24:00 UTC 2016
Author: jmm
Date: 2016-12-15 18:23:59 +0000 (Thu, 15 Dec 2016)
New Revision: 47111
Modified:
data/CVE/list
data/DSA/list
Log:
game-music-emu CVEfied
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-15 17:53:34 UTC (rev 47110)
+++ data/CVE/list 2016-12-15 18:23:59 UTC (rev 47111)
@@ -1,3 +1,23 @@
+CVE-2016-9961
+ - game-music-emu 0.6.0-4 (bug #848071)
+ NOTE: http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
+ NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
+CVE-2016-9960
+ - game-music-emu 0.6.0-4 (bug #848071)
+ NOTE: http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
+ NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
+CVE-2016-9959
+ - game-music-emu 0.6.0-4 (bug #848071)
+ NOTE: http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
+ NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
+CVE-2016-9958
+ - game-music-emu 0.6.0-4 (bug #848071)
+ NOTE: http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
+ NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
+CVE-2016-9957
+ - game-music-emu 0.6.0-4 (bug #848071)
+ NOTE: http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
+ NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
CVE-2016-9956 [Allows the route manager to overwrite arbitrary files]
- flightgear 1:2016.4.3+dfsg-1 (bug #848114)
NOTE: http://www.openwall.com/lists/oss-security/2016/12/14/11
@@ -41,12 +61,6 @@
NOTE: https://simplesamlphp.org/security/201612-02
NOTE: https://github.com/simplesamlphp/simplesamlphp/commit/a2326d75dd14accaac162dd2cb30aaefcc1f9205
NOTE: http://www.openwall.com/lists/oss-security/2016/12/14/7
-CVE-2016-XXXX [code execution in SNES code]
- - game-music-emu 0.6.0-4 (bug #848071)
- [jessie] - game-music-emu 0.5.5-2+deb8u1
- NOTE: Workaround entry for DSA-3735-1 until CVE assigned
- NOTE: http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/15/1
CVE-2016-9939 [denial-of-service in ASN1 decoder]
RESERVED
- libcrypto++ <unfixed> (bug #848009)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2016-12-15 17:53:34 UTC (rev 47110)
+++ data/DSA/list 2016-12-15 18:23:59 UTC (rev 47111)
@@ -1,4 +1,5 @@
[15 Dec 2016] DSA-3735-1 game-music-emu - security update
+ {CVE-2016-9957 CVE-2016-9958 CVE-2016-9959 CVE-2016-9960 CVE-2016-9961}
[jessie] - game-music-emu 0.5.5-2+deb8u1
[14 Dec 2016] DSA-3734-1 firefox-esr - security update
{CVE-2016-9893 CVE-2016-9895 CVE-2016-9897 CVE-2016-9898 CVE-2016-9899 CVE-2016-9900 CVE-2016-9901 CVE-2016-9902 CVE-2016-9904 CVE-2016-9905}
More information about the Secure-testing-commits
mailing list