[Secure-testing-commits] r46026 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Nov 6 20:35:27 UTC 2016
Author: carnil
Date: 2016-11-06 20:35:27 +0000 (Sun, 06 Nov 2016)
New Revision: 46026
Modified:
data/CVE/list
Log:
Add information for CVE-2016-1841
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-06 20:14:27 UTC (rev 46025)
+++ data/CVE/list 2016-11-06 20:35:27 UTC (rev 46026)
@@ -23926,10 +23926,12 @@
CVE-2016-1842 (MapKit in Apple iOS before 9.3.2, OS X before 10.11.5, and watchOS ...)
TODO: check
CVE-2016-1841 (libxslt, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS ...)
- - libxslt <undetermined>
- NOTE: (possible) upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=758291
- NOTE: (possible) upstream commit: https://git.gnome.org/browse/libxslt/commit/?id=fc1ff481fd01e9a65a921c542fed68d8c965e8a3
- TODO: check, most likely *not* only Apple specific, clarifying with upstream
+ - libxslt 1.1.29-1
+ [jessie] - libxslt 1.1.28-2+deb8u1
+ [wheezy] - libxslt 1.1.26-14.1+deb7u1
+ NOTE: upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=758291
+ NOTE: upstream commit: https://git.gnome.org/browse/libxslt/commit/?id=fc1ff481fd01e9a65a921c542fed68d8c965e8a3
+ TODO: checking with MITRE if association to the CVE is correct, bu seems the only valid one
CVE-2016-1840 (Heap-based buffer overflow in the xmlFAParsePosCharGroup function in ...)
{DSA-3593-1 DLA-503-1}
- libxml2 2.9.3+dfsg1-1.1
More information about the Secure-testing-commits
mailing list