[Secure-testing-commits] r46125 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-11-11 17:56:02 +0000 (Fri, 11 Nov 2016)
New Revision: 46125

Modified:
   data/CVE/list
Log:
Add CVE-2016-9275

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-11-11 17:55:49 UTC (rev 46124)
+++ data/CVE/list	2016-11-11 17:56:02 UTC (rev 46125)
@@ -3,6 +3,11 @@
 	NOTE: https://sourceforge.net/p/libdwarf/code/ci/583f8834083b5ef834c497f5b47797e16101a9a6/
 	NOTE: https://blogs.gentoo.org/ago/2016/11/07/libdwarf-heap-based-buffer-overflow-in-dwarf_get_aranges_list-dwarf_arange-c
 	NOTE: Same commit as for CVE-2016-9275. Nees the dwarf_arange.c part of the commit.
+CVE-2016-9275 [heap-based buffer overflow in _dwarf_skim_forms (dwarf_macro5.c)]
+	- dwarfutils <unfixed>
+	NOTE: https://sourceforge.net/p/libdwarf/code/ci/583f8834083b5ef834c497f5b47797e16101a9a6/
+	NOTE: https://blogs.gentoo.org/ago/2016/11/07/libdwarf-heap-based-buffer-overflow-in-_dwarf_skim_forms-dwarf_macro5-c
+	NOTE: Same commit as for CVE-2016-9276. Needs the dwarf_macro5.c part of the commit.
 CVE-2016-9273 [libtiff heap overflow]
 	- tiff <unfixed>
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2587