[Secure-testing-commits] r45346 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Oct 16 05:27:52 UTC 2016
Author: carnil
Date: 2016-10-16 05:27:33 +0000 (Sun, 16 Oct 2016)
New Revision: 45346
Modified:
data/CVE/list
Log:
Add CVE ID's for third potrace blogpost issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-16 05:23:35 UTC (rev 45345)
+++ data/CVE/list 2016-10-16 05:27:33 UTC (rev 45346)
@@ -3,6 +3,30 @@
{DSA-3693-1}
- libgd2 <unfixed> (bug #840806)
NOTE: Corresponds to the 0020-Fix-invalid-read-in-gdImageCreateFromTiffPtr.patch patch
+CVE-2016-8703
+ - potrace 1.13-1
+ NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
+CVE-2016-8702
+ - potrace 1.13-1
+ NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
+CVE-2016-8701
+ - potrace 1.13-1
+ NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
+CVE-2016-8700
+ - potrace 1.13-1
+ NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
+CVE-2016-8699
+ - potrace 1.13-1
+ NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
+CVE-2016-8698
+ - potrace 1.13-1
+ NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
CVE-2016-8697 [AddressSanitizer: FPE on unknown address 0x508d51 in bm_new ... bitmap.h]
- potrace 1.13-1
NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-divide-by-zero-in-bm_new-bitmap-h/
More information about the Secure-testing-commits
mailing list