[Secure-testing-commits] r40418 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2016-03-16 20:42:22 +0000 (Wed, 16 Mar 2016)
New Revision: 40418

Modified:
   data/CVE/list
Log:
three openjpeg issues CVEfied
remove non-issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-16 17:48:52 UTC (rev 40417)
+++ data/CVE/list	2016-03-16 20:42:22 UTC (rev 40418)
@@ -195,16 +195,16 @@
 	[jessie] - flashrom <no-dsa> (Minor issue)
 	[wheezy] - flashrom <no-dsa> (Minor issue)
 	NOTE: https://www.flashrom.org/pipermail/flashrom/2016-March/014523.html
-CVE-2016-XXXX [Out-Of-Bounds Read in sycc422_to_rgb function]
+CVE-2016-3183 [Out-Of-Bounds Read in sycc422_to_rgb function]
 	- openjpeg2 <unfixed>
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/14/14
 	NOTE: https://github.com/uclouvain/openjpeg/issues/726
-CVE-2016-XXXX [Heap Corruption in opj_free function]
+CVE-2016-3182 [Heap Corruption in opj_free function]
 	- openjpeg2 <unfixed>
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/14/13
 	NOTE: https://github.com/uclouvain/openjpeg/issues/725
 	TODO: check, possibly as well src:openjpeg
-CVE-2016-XXXX [Out-Of-Bounds Read in opj_tcd_free_tile function]
+CVE-2016-3181 [Out-Of-Bounds Read in opj_tcd_free_tile function]
 	- openjpeg2 <unfixed>
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/14/12
 	NOTE: https://github.com/uclouvain/openjpeg/issues/724
@@ -2253,10 +2253,6 @@
 	RESERVED
 CVE-2015-8814
 	RESERVED
-CVE-2016-XXXX [open redirect]
-	- graphite-web <unfixed>
-	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/02/17/7
-	NOTE: https://github.com/graphite-project/graphite-web/issues/1441
 CVE-2016-2392 [usb: null pointer dereference in remote NDIS control message handling]
 	RESERVED
 	- qemu <unfixed> (bug #815008)