[Secure-testing-commits] r45858 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Nov 2 05:34:59 UTC 2016
Author: carnil
Date: 2016-11-02 05:34:59 +0000 (Wed, 02 Nov 2016)
New Revision: 45858
Modified:
data/CVE/list
Log:
Add two XXE issues in perl modules
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-01 21:28:30 UTC (rev 45857)
+++ data/CVE/list 2016-11-02 05:34:59 UTC (rev 45858)
@@ -1,3 +1,13 @@
+CVE-2016-XXXX [Image-Info: XXE in SVG files]
+ - libimage-info-perl <unfixed>
+ NOTE: https://rt.cpan.org/Public/Bug/Display.html?id=118099
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1379556
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/11/02/1
+CVE-2016-XXXX [XML-Twig: expand_external_ents fails to work as documented]
+ - libxml-twig-perl <unfixed>
+ NOTE: https://rt.cpan.org/Public/Bug/Display.html?id=118097
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1379553
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/11/02/1
CVE-2016-9136
RESERVED
CVE-2016-9135
More information about the Secure-testing-commits
mailing list