[Secure-testing-commits] r45082 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Oct 5 18:21:04 UTC 2016
Author: carnil
Date: 2016-10-05 18:21:04 +0000 (Wed, 05 Oct 2016)
New Revision: 45082
Modified:
data/CVE/list
Log:
CVE-2016-7978/ghostscript assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-05 18:20:52 UTC (rev 45081)
+++ data/CVE/list 2016-10-05 18:21:04 UTC (rev 45082)
@@ -4,12 +4,12 @@
NOTE: Reproducer: http://bugs.ghostscript.com/show_bug.cgi?id=697190#c0
NOTE: Patch: http://git.ghostscript.com/?p=ghostpdl.git;h=875a0095f37626a721c7ff57d606a0f95af03913
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/05/7
-CVE-2016-XXXX [reference leak in .setdevice allows use-after-free and remote code execution]
+CVE-2016-7978 [reference leak in .setdevice allows use-after-free and remote code execution]
- ghostscript <unfixed> (bug #839845)
NOTE: Upstream bug: http://bugs.ghostscript.com/show_bug.cgi?id=697179
NOTE: Reproducer: http://bugs.ghostscript.com/show_bug.cgi?id=697179#c0
- NOTE: Patch: http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git;a=commitdiff;h=d5ad1e02
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/05/7
+ NOTE: Patch: http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git;h=d5ad1e0298e1c193087c824eb4f79628b182e28b
+ NOTE: http://www.openwall.com/lists/oss-security/2016/10/05/7
CVE-2016-7977 [.libfile doesn't check PermitFileReading array, allowing remote file disclosure]
- ghostscript <unfixed> (high; bug #839841)
NOTE: Upstream bug: http://bugs.ghostscript.com/show_bug.cgi?id=697169
@@ -1579,8 +1579,6 @@
RESERVED
CVE-2016-7979
RESERVED
-CVE-2016-7978
- RESERVED
CVE-2016-7975
RESERVED
CVE-2016-7974
More information about the Secure-testing-commits
mailing list