[Secure-testing-commits] r45360 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Oct 16 06:22:36 UTC 2016
Author: carnil
Date: 2016-10-16 06:22:36 +0000 (Sun, 16 Oct 2016)
New Revision: 45360
Modified:
data/CVE/list
Log:
Add CVE-2016-8685/potrace
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-16 06:22:27 UTC (rev 45359)
+++ data/CVE/list 2016-10-16 06:22:36 UTC (rev 45360)
@@ -496,6 +496,9 @@
NOTE: and no mechanism is currently known by which an attacker who does not
NOTE: already have root privileges could induce systemd to send messages
NOTE: that would trigger the format string vulnerability.
+CVE-2016-8685 [invalid memory access in findnext (decompose.c)]
+ - potrace <unfixed>
+ NOTE: https://blogs.gentoo.org/ago/2016/08/29/potrace-invalid-memory-access-in-findnext-decompose-c/
CVE-2016-8684 [memory allocation failure in MagickMalloc (memory.c)]
- graphicsmagick <unfixed>
NOTE: https://blogs.gentoo.org/ago/2016/09/15/graphicsmagick-memory-allocation-failure-in-magickmalloc-memory-c/
More information about the Secure-testing-commits
mailing list