[Secure-testing-commits] r38854 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-01-11 18:15:34 +0000 (Mon, 11 Jan 2016)
New Revision: 38854

Modified:
   data/CVE/list
Log:
Add CVE-2015-8397/gdcm

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-01-11 18:13:20 UTC (rev 38853)
+++ data/CVE/list	2016-01-11 18:15:34 UTC (rev 38854)
@@ -4527,8 +4527,11 @@
 CVE-2015-8398
 	RESERVED
 	NOT-FOR-US: Atlassian Confluence
-CVE-2015-8397
+CVE-2015-8397 [GDCM out-of-bounds read in JPEGLSCodec::DecodeExtent]
 	RESERVED
+	- gdcm 2.6.2-1
+	NOTE: http://census-labs.com/news/2016/01/11/gdcm-out-bounds-read-jpeglscodec-decodeextent/
+	TODO: check older versions
 CVE-2015-8396 [GDCM buffer overflow in ImageRegionReader::ReadIntoBuffer]
 	RESERVED
 	- gdcm 2.6.2-1