[Secure-testing-commits] r45334 - in data: CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Oct 15 11:25:44 UTC 2016
Author: carnil
Date: 2016-10-15 11:25:43 +0000 (Sat, 15 Oct 2016)
New Revision: 45334
Modified:
data/CVE/list
data/DSA/list
Log:
Add CVE reference for libgd2 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-15 10:31:55 UTC (rev 45333)
+++ data/CVE/list 2016-10-15 11:25:43 UTC (rev 45334)
@@ -1,6 +1,5 @@
-CVE-2016-XXXX [invalid read in gdImageCreateFromTiffPtr()]
+CVE-2016-6911 [invalid read in gdImageCreateFromTiffPtr()]
- libgd2 <unfixed> (bug #840806)
- [jessie] - libgd2 2.1.0-5+deb8u7
NOTE: Workaround entry for DSA-3693-1 until CVE assigned
NOTE: Corresponds to the 0020-Fix-invalid-read-in-gdImageCreateFromTiffPtr.patch patch
CVE-2016-XXXX [Stack Buffer Overflow in GD dynamicGetbuf]
@@ -4995,8 +4994,6 @@
NOT-FOR-US: OSSIM
CVE-2016-6912
RESERVED
-CVE-2016-6911
- RESERVED
CVE-2016-6910
RESERVED
CVE-2016-6909 (Buffer overflow in the Cookie parser in Fortinet FortiOS 4.x before ...)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2016-10-15 10:31:55 UTC (rev 45333)
+++ data/DSA/list 2016-10-15 11:25:43 UTC (rev 45334)
@@ -1,5 +1,5 @@
[14 Oct 2016] DSA-3693-1 libgd2 - security update
- {CVE-2016-7568}
+ {CVE-2016-6911 CVE-2016-7568}
[jessie] - libgd2 2.1.0-5+deb8u7
[13 Oct 2016] DSA-3692-1 freeimage - security update
{CVE-2015-3885 CVE-2016-5684}
More information about the Secure-testing-commits
mailing list