[Secure-testing-commits] r38627 - in data: CVE DLA DSA

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Jan 1 07:21:00 UTC 2016 

Author: carnil
Date: 2016-01-01 07:20:59 +0000 (Fri, 01 Jan 2016)
New Revision: 38627

Modified:
   data/CVE/list
   data/DLA/list
   data/DSA/list
Log:
CVE-2015-8710/libxml2 assigned

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-12-31 22:26:35 UTC (rev 38626)
+++ data/CVE/list	2016-01-01 07:20:59 UTC (rev 38627)
@@ -17651,11 +17651,8 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2015/10/22/5
 	NOTE: https://git.gnome.org/browse/libxml2/commit/?id=a7dfab7411cbf545f359dd3157e5df1eb0e7ce31 (v2.9.3)
 	NOTE: https://git.gnome.org/browse/libxml2/commit/?id=9b8512337d14c8ddf662fcb98b0135f225a1c489 (v2.9.3)
-CVE-2015-XXXX [out-of-bounds memory access when parsing an unclosed HTML comment]
+CVE-2015-8710 [out-of-bounds memory access when parsing an unclosed HTML comment]
 	- libxml2 2.9.2+really2.9.1+dfsg1-0.1 (bug #782985)
-	[jessie] - libxml2 2.9.1+dfsg1-5+deb8u1
-	[wheezy] - libxml2 2.8.0+dfsg1-7+wheezy5
-	[squeeze] - libxml2 2.7.8.dfsg-2+squeeze12
 	NOTE: Added workaround item to reflect entry fixed status, remove once CVE assigned
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/04/19/4
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=746048

Modified: data/DLA/list
===================================================================
--- data/DLA/list	2015-12-31 22:26:35 UTC (rev 38626)
+++ data/DLA/list	2016-01-01 07:20:59 UTC (rev 38627)
@@ -335,7 +335,7 @@
 	{CVE-2015-1330}
 	[squeeze] - unattended-upgrades 0.62.2+squeeze1
 [03 Jul 2015] DLA-266-1 libxml2 - security update
-	{CVE-2015-1819 CVE-2015-7941}
+	{CVE-2015-1819 CVE-2015-7941 CVE-2015-8710}
 	[squeeze] - libxml2 2.7.8.dfsg-2+squeeze12
 [03 Jul 2015] DLA-265-1 pykerberos - security update
 	{CVE-2015-3206}

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2015-12-31 22:26:35 UTC (rev 38626)
+++ data/DSA/list	2016-01-01 07:20:59 UTC (rev 38627)
@@ -1,5 +1,5 @@
 [23 Dec 2015] DSA-3430-1 libxml2 - security update
-	{CVE-2015-1819 CVE-2015-5312 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499 CVE-2015-7500 CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 CVE-2015-8241 CVE-2015-8317}
+	{CVE-2015-1819 CVE-2015-5312 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499 CVE-2015-7500 CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 CVE-2015-8241 CVE-2015-8317 CVE-2015-8710}
 	[wheezy] - libxml2 2.8.0+dfsg1-7+wheezy5
 	[jessie] - libxml2 2.9.1+dfsg1-5+deb8u1
 [21 Dec 2015] DSA-3429-1 foomatic-filters - security update

More information about the Secure-testing-commits mailing list