[Secure-testing-commits] r42914 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jun 30 14:13:09 UTC 2016
Author: carnil
Date: 2016-06-30 14:13:08 +0000 (Thu, 30 Jun 2016)
New Revision: 42914
Modified:
data/CVE/list
Log:
Add CVE-2016-6131, unchecked and needs review for the various packages embedding the source file
NOTE for reviewers, one evaluated will be no-dsa as the other issues.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-30 13:28:21 UTC (rev 42913)
+++ data/CVE/list 2016-06-30 14:13:08 UTC (rev 42914)
@@ -1,3 +1,15 @@
+CVE-2016-6131
+ - libiberty <unfixed>
+ - valgrind <unfixed>
+ - ht <undetermined>
+ - binutils <unfixed>
+ - binutils-h8300-hms <unfixed>
+ - gcc-h8300-hms <unfixed>
+ - gdb <unfixed>
+ - nescc <unfixed>
+ NOTE: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=71696
+ NOTE: Patches (under review): https://gcc.gnu.org/ml/gcc-patches/2016-06/msg02030.html
+ TODO: check
CVE-2016-6128 [Invalid color index is not properly handled leading to denial of service]
- libgd2 <unfixed> (bug #829062)
[wheezy] - libgd2 <not-affected> (Vulnerable code not present)
More information about the Secure-testing-commits
mailing list