[Secure-testing-commits] r42302 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-06-04 07:44:17 +0000 (Sat, 04 Jun 2016)
New Revision: 42302

Modified:
   data/CVE/list
Log:
Add CVE-2015-8899/dnsmasq

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-06-04 06:45:29 UTC (rev 42301)
+++ data/CVE/list	2016-06-04 07:44:17 UTC (rev 42302)
@@ -421,6 +421,11 @@
 	RESERVED
 CVE-2016-5127
 	RESERVED
+CVE-2015-8899 [denial of service - dnsmasq crashes querying any CNAME that points to localhost.localdomain]
+	- dnsmasq 2.76-1
+	NOTE: http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2016q2/010479.html
+	NOTE: http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=41a8d9e99be9f2cc8b02051dd322cb45e0faac87
+	NOTE: https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1581181
 CVE-2015-8898 [Prevent null pointer access in magick/constitute.c]
 	RESERVED
 	- imagemagick 8:6.8.9.9-7