[Secure-testing-commits] r43044 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jul 7 04:55:59 UTC 2016
Author: carnil
Date: 2016-07-07 04:55:59 +0000 (Thu, 07 Jul 2016)
New Revision: 43044
Modified:
data/CVE/list
Log:
Mark librsvg as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-06 21:10:12 UTC (rev 43043)
+++ data/CVE/list 2016-07-07 04:55:59 UTC (rev 43044)
@@ -10,6 +10,7 @@
- bind9 <unfixed>
CVE-2016-6163 [read out-of-bounds in librsvg2 (a dependency of gdk-pixbuf used to render svg images).]
- librsvg 2.40.9-2
+ [jessie] - librsvg <no-dsa> (Minor issue)
NOTE: Fixed by: https://git.gnome.org/browse/librsvg/commit/?id=0035e95118a60c0cd3949c2300472d805e16a022 (2.40.7)
NOTE: Reproducer attached in http://seclists.org/oss-sec/2016/q3/7
CVE-2016-6162 [BUG_ON crash in linux 4.7-rc6/master skbuff.c]
More information about the Secure-testing-commits
mailing list