[Secure-testing-commits] r43473 - data/CVE
Emilio Pozuelo Monfort
pochu at moszumanska.debian.org
Mon Jul 25 23:34:58 UTC 2016
Author: pochu
Date: 2016-07-25 23:34:58 +0000 (Mon, 25 Jul 2016)
New Revision: 43473
Modified:
data/CVE/list
Log:
add upstream bug and wheezy note to gdk-pixbuf vulnerability
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-25 22:15:59 UTC (rev 43472)
+++ data/CVE/list 2016-07-25 23:34:58 UTC (rev 43473)
@@ -634,6 +634,8 @@
CVE-2016-XXXX [Write out-of-bounds]
- gdk-pixbuf <unfixed>
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/13/11
+ NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=769170
+ [wheezy] - gdk-pixbuf <not-affected> (Fails with ENOMEM, no crash)
CVE-2016-6224 (ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap ...)
- ecryptfs-utils <not-affected> (Broken code not present; incomplete fix for CVE-2015-8946 not applied)
NOTE: Actually due to an incomplete fix of LP#1447282
More information about the Secure-testing-commits
mailing list