[Secure-testing-commits] r45633 - data/CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Wed Oct 26 17:59:14 UTC 2016
Author: anarcat
Date: 2016-10-26 17:59:14 +0000 (Wed, 26 Oct 2016)
New Revision: 45633
Modified:
data/CVE/list
Log:
Summary: note that CVE-2016-8859 may not be enough
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-26 17:57:52 UTC (rev 45632)
+++ data/CVE/list 2016-10-26 17:59:14 UTC (rev 45633)
@@ -692,6 +692,7 @@
- tre <unfixed> (bug #842169)
- musl <unfixed> (bug #842171)
NOTE: http://www.openwall.com/lists/oss-security/2016/10/19/1
+ NOTE: other issues may still be present in tre after this: https://github.com/laurikari/tre/issues/37
NOTE: musl patch: http://git.musl-libc.org/cgit/musl/commit/?id=c3edc06d1e1360f3570db9155d6b318ae0d0f0f7, not released yet
CVE-2016-8858 [Memory exhaustion due to unregistered KEXINIT handler after receiving message]
RESERVED
More information about the Secure-testing-commits
mailing list