[Secure-testing-commits] r44735 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Sep 19 05:18:46 UTC 2016
Author: carnil
Date: 2016-09-19 05:18:45 +0000 (Mon, 19 Sep 2016)
New Revision: 44735
Modified:
data/CVE/list
Log:
Add reference for CVE-2016-7410
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-19 04:35:23 UTC (rev 44734)
+++ data/CVE/list 2016-09-19 05:18:45 UTC (rev 44735)
@@ -2323,8 +2323,10 @@
RESERVED
- dwarfutils <unfixed> (bug #838019)
[wheezy] - dwarfutils <not-affected> (reproducer shows no errors with valgrind)
+ NOTE: https://www.prevanders.net/dwarfbug.html#DW201609-003
NOTE: http://seclists.org/oss-sec/2016/q3/490
NOTE: Reproducer does not show any errors (heap-based overflow) for Jessie version too.
+ NOTE: The code for _dwarf_read_loc_section looks similar in previous versions, asked upstream.
CVE-2016-7409
RESERVED
- dropbear 2016.74-1 (unimportant)
More information about the Secure-testing-commits
mailing list