[Secure-testing-commits] r42923 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jun 30 18:19:29 UTC 2016
Author: carnil
Date: 2016-06-30 18:19:28 +0000 (Thu, 30 Jun 2016)
New Revision: 42923
Modified:
data/CVE/list
Log:
Follow decision for libiberty, valgrind, et al ...
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-30 18:14:05 UTC (rev 42922)
+++ data/CVE/list 2016-06-30 18:19:28 UTC (rev 42923)
@@ -2,17 +2,24 @@
- libgd2 <unfixed>
NOTE: https://github.com/libgd/libgd/issues/247
CVE-2016-6131
- - libiberty <unfixed>
- - valgrind <unfixed>
- - ht <undetermined>
- - binutils <unfixed>
- - binutils-h8300-hms <unfixed>
- - gcc-h8300-hms <unfixed>
- - gdb <unfixed>
- - nescc <unfixed>
+ - libiberty <unfixed> (low)
+ [jessie] - libiberty <no-dsa> (Minor issue)
+ - valgrind <unfixed> (low)
+ [jessie] - valgrind <no-dsa> (Minor issue)
+ - ht <unfixed> (low)
+ [jessie] - ht <no-dsa> (Minor issue)
+ - binutils <unfixed> (low)
+ [jessie] - binutils <no-dsa> (Minor issue)
+ - binutils-h8300-hms <unfixed> (low)
+ [jessie] - binutils-h8300-hms <no-dsa> (Minor issue)
+ - gcc-h8300-hms <unfixed> (low)
+ [jessie] - gcc-h8300-hms <no-dsa> (Minor issue)
+ - gdb <unfixed> (low)
+ [jessie] - gdb <no-dsa> (Minor issue)
+ - nescc <unfixed> (low)
+ [jessie] - nescc <no-dsa> (Minor issue)
NOTE: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=71696
NOTE: Patches (under review): https://gcc.gnu.org/ml/gcc-patches/2016-06/msg02030.html
- TODO: check
CVE-2016-6128 [Invalid color index is not properly handled leading to denial of service]
- libgd2 <unfixed> (bug #829062)
[wheezy] - libgd2 <not-affected> (Vulnerable code not present)
More information about the Secure-testing-commits
mailing list