[Secure-testing-commits] r45080 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Oct 5 18:18:10 UTC 2016
Author: carnil
Date: 2016-10-05 18:18:10 +0000 (Wed, 05 Oct 2016)
New Revision: 45080
Modified:
data/CVE/list
Log:
CVE-2016-7976/ghostscript assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-05 17:53:21 UTC (rev 45079)
+++ data/CVE/list 2016-10-05 18:18:10 UTC (rev 45080)
@@ -16,12 +16,12 @@
NOTE: Reproducer: http://www.openwall.com/lists/oss-security/2016/09/29/28
NOTE: Patch: http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git;a=commitdiff;h=cf046d2
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/05/7
-CVE-2016-XXXX [various userparams allow %pipe% in paths, allowing remote shell command execution]
+CVE-2016-7976 [various userparams allow %pipe% in paths, allowing remote shell command execution]
- ghostscript <unfixed> (high; bug #839260)
NOTE: Upstream bug: http://bugs.ghostscript.com/show_bug.cgi?id=697178
NOTE: Reproducer: http://www.openwall.com/lists/oss-security/2016/09/30/8
- NOTE: Patch: http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git;a=commitdiff;h=71ac874
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/05/7
+ NOTE: Patch: http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git;h=71ac87493b1e445d6c07554d4246cf7d4f44875c
+ NOTE: http://www.openwall.com/lists/oss-security/2016/10/05/7
CVE-2015-8964
RESERVED
CVE-2015-8963
@@ -1583,8 +1583,6 @@
RESERVED
CVE-2016-7977
RESERVED
-CVE-2016-7976
- RESERVED
CVE-2016-7975
RESERVED
CVE-2016-7974
More information about the Secure-testing-commits
mailing list