[Secure-testing-commits] r50289 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-04-03 10:55:44 +0000 (Mon, 03 Apr 2017)
New Revision: 50289

Modified:
   data/CVE/list
Log:
Add CVE-2017-5950/yaml-cpp

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-03 10:53:30 UTC (rev 50288)
+++ data/CVE/list	2017-04-03 10:55:44 UTC (rev 50289)
@@ -4068,7 +4068,8 @@
 	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697548
 	TODO: check
 CVE-2017-5950 (The SingleDocParser::HandleNode function in yaml-cpp (aka LibYaml-C++) ...)
-	TODO: check
+	- yaml-cpp <unfixed>
+	NOTE: https://github.com/jbeder/yaml-cpp/issues/459
 CVE-2017-5949 (JavaScriptCore in WebKit, as distributed in Safari Technology Preview ...)
 	- webkitgtk <unfixed> (unimportant)
 	NOTE: Not covered by security support