[Secure-testing-commits] r40510 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Mar 22 05:42:52 UTC 2016
Author: carnil
Date: 2016-03-22 05:42:52 +0000 (Tue, 22 Mar 2016)
New Revision: 40510
Modified:
data/CVE/list
Log:
Update CVE-2015-8833/pidgin-otr
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-22 00:06:38 UTC (rev 40509)
+++ data/CVE/list 2016-03-22 05:42:52 UTC (rev 40510)
@@ -1626,10 +1626,12 @@
CVE-2015-8833 [Heap use after free in Pidgin-OTR plugin]
RESERVED
- pidgin-otr 4.0.2-1
+ [wheezy] - pidgin-otr <not-affected> (Vulnerable code not present)
NOTE: https://blog.fuzzing-project.org/39-Heap-use-after-free-in-Pidgin-OTR-plugin.html
NOTE: https://bugs.otr.im/issues/88
NOTE: https://bugs.otr.im/issues/128
- NOTE: https://bugs.otr.im/projects/pidgin-otr/repository/revisions/aaf551b9dd5cbba8c4abaa3d4dc7ead860efef94
+ NOTE: Fixed by: https://bugs.otr.im/projects/pidgin-otr/repository/revisions/aaf551b9dd5cbba8c4abaa3d4dc7ead860efef94
+ NOTE: Introduced by: https://bugs.otr.im/projects/pidgin-otr/repository/revisions/c276bfa786bef8a4572a37d5633cf40f480d3ae0
NOTE: http://www.openwall.com/lists/oss-security/2016/03/09/8
CVE-2016-2859
REJECTED
More information about the Secure-testing-commits
mailing list