[Secure-testing-commits] r45999 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 5 12:37:17 UTC 2016
Author: carnil
Date: 2016-11-05 12:37:16 +0000 (Sat, 05 Nov 2016)
New Revision: 45999
Modified:
data/CVE/list
Log:
Update comments for CVE-2016-1841
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-05 12:04:40 UTC (rev 45998)
+++ data/CVE/list 2016-11-05 12:37:16 UTC (rev 45999)
@@ -23917,7 +23917,9 @@
TODO: check
CVE-2016-1841 (libxslt, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS ...)
- libxslt <undetermined>
- TODO: check, most likely *not* only Apple specific, but currently not enough public information available to determine the fix
+ NOTE: (possible) upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=758291
+ NOTE: (possible) upstream commit: https://git.gnome.org/browse/libxslt/commit/?id=fc1ff481fd01e9a65a921c542fed68d8c965e8a3
+ TODO: check, most likely *not* only Apple specific, clarifying with upstream
CVE-2016-1840 (Heap-based buffer overflow in the xmlFAParsePosCharGroup function in ...)
{DSA-3593-1 DLA-503-1}
- libxml2 2.9.3+dfsg1-1.1
More information about the Secure-testing-commits
mailing list