[Secure-testing-commits] r45521 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Oct 23 11:00:51 UTC 2016
Author: carnil
Date: 2016-10-23 11:00:51 +0000 (Sun, 23 Oct 2016)
New Revision: 45521
Modified:
data/CVE/list
Log:
Add entry for incomplete fix for CVE-2016-8887
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-23 10:58:10 UTC (rev 45520)
+++ data/CVE/list 2016-10-23 11:00:51 UTC (rev 45521)
@@ -4,9 +4,16 @@
NOTE: https://blogs.gentoo.org/ago/2016/10/23/jasper-heap-based-buffer-overflow-in-jpc_dec_tiledecode-jpc_dec-c/
NOTE: Reproducer: https://github.com/asarubbo/poc/blob/master/00001-jasper-heapoverflow-jpc_dec_tiledecode
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/23/7
+CVE-2016-XXXX [NULL pointer dereference in jp2_colr_destroy (jp2_cod.c) (incomplete fix for CVE-2016-8887)]
+ - jasper <not-affected> (Incomplete fix for CVE-206-8887 not applied)
+ NOTE: Reproducer: https://github.com/asarubbo/poc/blob/master/00002-jasper-NULLptr-jp2_colr_destroy
+ NOTE: https://blogs.gentoo.org/ago/2016/10/23/jasper-null-pointer-dereference-in-jp2_colr_destroy-jp2_cod-c-incomplete-fix-for-cve-2016-8887
CVE-2016-8887
- jasper <unfixed>
NOTE: https://blogs.gentoo.org/ago/2016/10/18/jasper-null-pointer-dereference-in-jp2_colr_destroy-jp2_cod-c
+ NOTE: When fixing this issue look at the followup report
+ NOTE: https://blogs.gentoo.org/ago/2016/10/23/jasper-null-pointer-dereference-in-jp2_colr_destroy-jp2_cod-c-incomplete-fix-for-cve-2016-8887
+ NOTE: and include the fix to not make jasper vulnerable to the incomplete fix.
CVE-2016-8886
- jasper <unfixed>
NOTE: https://blogs.gentoo.org/ago/2016/10/18/jasper-memory-allocation-failure-in-jas_malloc-jas_malloc-c
More information about the Secure-testing-commits
mailing list