[Secure-testing-commits] r45533 - data/CVE
Ola Lundqvist
opal at moszumanska.debian.org
Sun Oct 23 21:24:06 UTC 2016
Author: opal
Date: 2016-10-23 21:24:05 +0000 (Sun, 23 Oct 2016)
New Revision: 45533
Modified:
data/CVE/list
Log:
Reported a new problem.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-23 20:07:38 UTC (rev 45532)
+++ data/CVE/list 2016-10-23 21:24:05 UTC (rev 45533)
@@ -1,3 +1,7 @@
+CVE-2016-XXXX [Privilege escalation possible to other user than root]
+ - bash <unfixed> (bug #841856)
+ NOTE: This is strongly related to the problem described in CVE-2016-7543 and the correction
+ NOTE: is very similar.
CVE-2016-XXXX [heap-based buffer overflow in jpc_dec_tiledecode (jpc_dec.c)]
- jasper <unfixed>
NOTE: Fixed by: https://github.com/mdadams/jasper/commit/988f8365f7d8ad8073b6786e433d34c553ecf568 (version-1.900.12)
More information about the Secure-testing-commits
mailing list