[Secure-testing-commits] r45377 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Oct 16 13:16:38 UTC 2016
Author: carnil
Date: 2016-10-16 13:16:38 +0000 (Sun, 16 Oct 2016)
New Revision: 45377
Modified:
data/CVE/list
Log:
Add bug references for dwarfutils, #840958, #840960 and #840961
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-16 12:56:02 UTC (rev 45376)
+++ data/CVE/list 2016-10-16 13:16:38 UTC (rev 45377)
@@ -522,17 +522,17 @@
NOTE: https://blogs.gentoo.org/ago/2016/09/15/graphicsmagick-stack-based-buffer-overflow-in-readsctimage-sct-c/
NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/0a0dfa81906d
CVE-2016-8679 [dwarf_util.c: heap-based buffer overflow in _dwarf_get_size_of_val]
- - dwarfutils <unfixed>
+ - dwarfutils <unfixed> (bug #840958)
NOTE: http://www.openwall.com/lists/oss-security/2016/10/08/11
NOTE: https://sourceforge.net/p/libdwarf/code/ci/2d14a7792889e33bc542c28d0f3792964c46214f/#diff-13
NOTE: https://sourceforge.net/p/libdwarf/code/ci/efe48cad0693d6994d9a7b561e1c3833b073a624/#diff-2
NOTE: Same fix as CVE-2016-8681 but different issue
CVE-2016-8680 [dwarf_util.c: heap-based buffer overflow in _dwarf_get_abbrev_for_code]
- - dwarfutils <unfixed>
+ - dwarfutils <unfixed> (bug #840960)
NOTE: http://www.openwall.com/lists/oss-security/2016/10/08/12
NOTE: https://sourceforge.net/p/libdwarf/code/ci/268c1f18d1d28612af3b72d7c670076b1b88e51c/tree/libdwarf/dwarf_util.c?diff=0b28b923c3bd9827d1d904feed2abadde4fa5de2
CVE-2016-8681 [dwarf_util.c: heap-based buffer overflow in _dwarf_get_abbrev_for_code second one]
- - dwarfutils <unfixed>
+ - dwarfutils <unfixed> (bug #840961)
NOTE: https://sourceforge.net/p/libdwarf/code/ci/2d14a7792889e33bc542c28d0f3792964c46214f/#diff-13
NOTE: https://sourceforge.net/p/libdwarf/code/ci/efe48cad0693d6994d9a7b561e1c3833b073a624/#diff-2
NOTE: http://www.openwall.com/lists/oss-security/2016/10/08/13
More information about the Secure-testing-commits
mailing list