[Secure-testing-commits] r44900 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Sep 26 05:07:54 UTC 2016
Author: carnil
Date: 2016-09-26 05:07:53 +0000 (Mon, 26 Sep 2016)
New Revision: 44900
Modified:
data/CVE/list
Log:
Three CVEs for dwarfutils fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-25 21:10:15 UTC (rev 44899)
+++ data/CVE/list 2016-09-26 05:07:53 UTC (rev 44900)
@@ -2188,7 +2188,7 @@
CVE-2016-7511 [Integer Overflow]
RESERVED
{DLA-635-1}
- - dwarfutils <unfixed> (bug #838757)
+ - dwarfutils 20160923-1 (bug #838757)
[jessie] - dwarfutils <no-dsa> (Minor issue, can be fixed in point release)
NOTE: https://sourceforge.net/p/libdwarf/bugs/3/
NOTE: https://www.prevanders.net/dwarfbug.html#DW201609-002
@@ -2200,7 +2200,7 @@
CVE-2016-7510 [Out-of-Bounds read]
RESERVED
{DLA-635-1}
- - dwarfutils <unfixed> (bug #838756)
+ - dwarfutils 20160923-1 (bug #838756)
[jessie] - dwarfutils <no-dsa> (Minor issue, can be fixed in point release)
NOTE: https://sourceforge.net/p/libdwarf/bugs/4/
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1377015
@@ -2485,7 +2485,7 @@
NOTE: https://github.com/php/php-src/commit/6a7cc8ff85827fa9ac715b3a83c2d9147f33cd43?w=1
CVE-2016-7410 [Heap buffer overflow in _dwarf_read_loc_section]
RESERVED
- - dwarfutils <unfixed> (bug #838019)
+ - dwarfutils 20160923-1 (bug #838019)
[jessie] - dwarfutils <not-affected> (Vulnerable code introduced in later version)
[wheezy] - dwarfutils <not-affected> (Vulnerable code introduced in later version)
NOTE: https://www.prevanders.net/dwarfbug.html#DW201609-003
More information about the Secure-testing-commits
mailing list