[Secure-testing-commits] r40294 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Mar 10 11:33:00 UTC 2016


Author: carnil
Date: 2016-03-10 11:33:00 +0000 (Thu, 10 Mar 2016)
New Revision: 40294

Modified:
   data/CVE/list
Log:
Add two linux issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-10 11:28:23 UTC (rev 40293)
+++ data/CVE/list	2016-03-10 11:33:00 UTC (rev 40294)
@@ -1,3 +1,15 @@
+CVE-2016-XXXX [netfilter IPT_SO_SET_REPLACE memory corruption]
+	- linux <unfixed>
+	NOTE: https://code.google.com/p/google-security-research/issues/detail?id=758
+	NOTE: http://marc.info/?l=netfilter-devel&m=145757134822741&w=2
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/10/4
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/10/7
+	TODO: check
+CVE-2016-XXXX [unsigned integer overflow on 32bit kernels]
+	- linux <unfixed>
+	NOTE: http://marc.info/?l=netfilter-devel&m=145757136822750&w=2
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/10/7
+	TODO: check
 CVE-2015-8833 [Heap use after free in Pidgin-OTR plugin]
 	- pidgin-otr <unfixed>
 	NOTE: https://blog.fuzzing-project.org/39-Heap-use-after-free-in-Pidgin-OTR-plugin.html




More information about the Secure-testing-commits mailing list