[Secure-testing-commits] r41358 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon May 2 20:03:21 UTC 2016
Author: carnil
Date: 2016-05-02 20:03:21 +0000 (Mon, 02 May 2016)
New Revision: 41358
Modified:
data/CVE/list
Log:
Add two temporary items for atheme-services
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-02 20:00:15 UTC (rev 41357)
+++ data/CVE/list 2016-05-02 20:03:21 UTC (rev 41358)
@@ -1,3 +1,12 @@
+CVE-2016-XXXX [A remote attacker could change Atheme's behavior by registering/dropping certain accounts/nicks]
+ - atheme-services <unfixed>
+ NOTE: https://github.com/atheme/atheme/issues/397
+ NOTE: https://github.com/atheme/atheme/commit/c597156adc60a45b5f827793cd420945f47bc03b
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/05/02/2
+CVE-2016-XXXX [denial of service due to a buffer overflow in the XMLRPC response encoding code]
+ - atheme-services <unfixed>
+ NOTE: https://github.com/atheme/atheme/commit/87580d767868360d2fed503980129504da84b63e
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/05/02/2
CVE-2016-4425 [stack exhaustion parsing a JSON file]
- jansson <unfixed> (bug #823238)
NOTE: https://github.com/akheron/jansson/issues/282
More information about the Secure-testing-commits
mailing list