[Secure-testing-commits] r38787 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Jan 9 00:39:32 UTC 2016
Author: jmm
Date: 2016-01-09 00:39:31 +0000 (Sat, 09 Jan 2016)
New Revision: 38787
Modified:
data/CVE/list
Log:
netsurf no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-08 21:10:13 UTC (rev 38786)
+++ data/CVE/list 2016-01-09 00:39:31 UTC (rev 38787)
@@ -7122,24 +7122,32 @@
[squeeze] - libnsbmp <no-dsa> (Library not used anywhere in Debian)
NOTE: http://source.netsurf-browser.org/libnsbmp.git/commit/?id=041df43bbe273b0829132b0b17d89a69da2927d4
- netsurf <unfixed>
+ [jessie] - netsurf <no-dsa> (netsurf already relies only entirely unsupported mozjs)
+ [wheezy] - netsurf <no-dsa> (netsurf already relies only entirely unsupported mozjs)
CVE-2015-7507 [out-of-bounds read]
RESERVED
- libnsbmp <unfixed>
[squeeze] - libnsbmp <no-dsa> (Library not used anywhere in Debian)
NOTE: http://source.netsurf-browser.org/libnsbmp.git/commit/?id=49427b52ba41a1813e3822301612e2e170107efd
- netsurf <unfixed>
+ [jessie] - netsurf <no-dsa> (netsurf already relies only entirely unsupported mozjs)
+ [wheezy] - netsurf <no-dsa> (netsurf already relies only entirely unsupported mozjs)
CVE-2015-7506 [out-of-bounds read]
RESERVED
- libnsgif <removed>
[squeeze] - libnsgif <no-dsa> (Library not used anywhere in Debian)
NOTE: http://source.netsurf-browser.org/libnsgif.git/commit/?id=088fa0819f1aeaf212a95caf7393a38c1640b5f0
- - netsurf <unfixed>
+ - netsurf <unfixed> (unimportant)
+ [jessie] - netsurf <no-dsa> (netsurf already relies only entirely unsupported mozjs)
+ [wheezy] - netsurf <no-dsa> (netsurf already relies only entirely unsupported mozjs)
CVE-2015-7505 [stack overflow]
RESERVED
- libnsgif <removed>
[squeeze] - libnsgif <no-dsa> (Library not used anywhere in Debian)
NOTE: http://source.netsurf-browser.org/libnsgif.git/commit/?id=a268d2c15252ac58c19f1b19771822c66bcf73b2
- netsurf <unfixed>
+ [jessie] - netsurf <no-dsa> (netsurf already relies only entirely unsupported mozjs)
+ [wheezy] - netsurf <no-dsa> (netsurf already relies only entirely unsupported mozjs)
CVE-2015-7504 [net: pcnet: heap overflow vulnerability in loopback mode]
RESERVED
- qemu 1:2.5+dfsg-1 (bug #806742)
More information about the Secure-testing-commits
mailing list