[Secure-testing-commits] r40376 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Mar 14 20:44:45 UTC 2016


Author: carnil
Date: 2016-03-14 20:44:45 +0000 (Mon, 14 Mar 2016)
New Revision: 40376

Modified:
   data/CVE/list
Log:
Add flashrom issue, fixed 0.9.9 upstream

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-14 18:37:33 UTC (rev 40375)
+++ data/CVE/list	2016-03-14 20:44:45 UTC (rev 40376)
@@ -1,3 +1,8 @@
+CVE-2016-XXXX [fscanf format string security bug in flashrom layout code]
+	- flashrom 0.9.9+r1954-1
+	[jessie] - flashrom <no-dsa> (Minor issue)
+	[wheezy] - flashrom <no-dsa> (Minor issue)
+	NOTE: https://www.flashrom.org/pipermail/flashrom/2016-March/014523.html
 CVE-2016-XXXX [Out-Of-Bounds Read in sycc422_to_rgb function]
 	- openjpeg2 <unfixed>
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/14/14




More information about the Secure-testing-commits mailing list