[Secure-testing-commits] r46303 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Nov 18 05:43:19 UTC 2016
Author: carnil
Date: 2016-11-18 05:43:19 +0000 (Fri, 18 Nov 2016)
New Revision: 46303
Modified:
data/CVE/list
Log:
Add upstream bug and commit reference for gstreamer issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-18 05:28:21 UTC (rev 46302)
+++ data/CVE/list 2016-11-18 05:43:19 UTC (rev 46303)
@@ -5,6 +5,8 @@
[jessie] - gst-plugins-bad1.0 1.4.4-2.1+deb8u1
NOTE: Workaround entry for DSA-3717-1 until CVE is assigned
NOTE: http://scarybeastsecurity.blogspot.de/2016/11/0day-poc-risky-design-decisions-in.html
+ NOTE: Upstream Bug: https://bugzilla.gnome.org/show_bug.cgi?id=774533
+ NOTE: Fixed by: https://cgit.freedesktop.org/gstreamer/gst-plugins-bad/commit/?id=4cb1bcf1422bbcd79c0f683edb7ee85e3f7a31fe
CVE-2016-XXXX [Denial of service via transliterate mechanism]
- drupal8 <itp> (bug #756305)
- drupal7 <not-affected> (Only affects Drupal 8)
More information about the Secure-testing-commits
mailing list