[Secure-testing-commits] r44495 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-09-11 03:03:14 +0000 (Sun, 11 Sep 2016)
New Revision: 44495

Modified:
   data/CVE/list
Log:
Add CVE-2016-7393

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-09-10 21:10:14 UTC (rev 44494)
+++ data/CVE/list	2016-09-11 03:03:14 UTC (rev 44495)
@@ -1,3 +1,9 @@
+CVE-2016-7393 [stack-based buffer overflow in aac_sync (aac_parser.c)]
+	- ffmpeg <undetermined>
+	- libav <removed>
+	NOTE: https://blogs.gentoo.org/ago/2016/08/20/libav-stack-based-buffer-overflow-in-aac_sync-aac_parser-c/
+	NOTE: https://git.libav.org/?p=libav.git;a=commit;h=fb1473080223a634b8ac2cca48a632d037a0a69d
+	TODO: check
 CVE-2016-7392 [heap-based buffer overflow in pstoedit_suffix_table_init (output-pstoedit.c)]
 	- autotrace <unfixed>
 	NOTE: https://blogs.gentoo.org/ago/2016/09/10/autotrace-heap-based-buffer-overflow-in-pstoedit_suffix_table_init-output-pstoedit-c/