[Secure-testing-commits] r48933 - in data: CVE DLA

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-02-14 19:02:56 +0000 (Tue, 14 Feb 2017)
New Revision: 48933

Modified:
   data/CVE/list
   data/DLA/list
Log:
CVE-2015-8984 assigned

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-02-14 19:00:55 UTC (rev 48932)
+++ data/CVE/list	2017-02-14 19:02:56 UTC (rev 48933)
@@ -65399,16 +65399,14 @@
 	RESERVED
 CVE-2014-9685 (Multiple cross-site scripting (XSS) vulnerabilities in Vanilla Forums ...)
 	NOT-FOR-US: Vanilla Forums
-CVE-2015-XXXX [potential application crash due to overread in fnmatch]
+CVE-2015-8984 [potential application crash due to overread in fnmatch]
 	- glibc 2.21-1 (bug #779587)
 	[jessie] - glibc 2.19-18+deb8u2
 	- eglibc <removed>
 	[wheezy] - eglibc 2.13-38+deb7u9
-	[squeeze] - eglibc 2.11.3-4+deb6u7
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=18032
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=4a28f4d55a6cc33474c0792fe93b5942d81bf185
-	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/26/5
-	NOTE: Added workaround entry for DLA-316-1 until CVE assigned.
+	NOTE: http://www.openwall.com/lists/oss-security/2015/02/26/5
 CVE-2011-5320 [glibc scanf implementation crashes on certain inputs]
 	RESERVED
 	{DLA-165-1}

Modified: data/DLA/list
===================================================================
--- data/DLA/list	2017-02-14 19:00:55 UTC (rev 48932)
+++ data/DLA/list	2017-02-14 19:02:56 UTC (rev 48933)
@@ -1542,7 +1542,7 @@
 	{CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-6749}
 	[squeeze] - vorbis-tools 1.4.0-1+deb6u1
 [27 Sep 2015] DLA-316-1 eglibc - security update
-	{CVE-2014-8121 CVE-2015-8777 CVE-2015-8983}
+	{CVE-2014-8121 CVE-2015-8777 CVE-2015-8983 CVE-2015-8984}
 	[squeeze] - eglibc 2.11.3-4+deb6u7
 [26 Sep 2015] DLA-315-1 nss - security update
 	{CVE-2015-2721 CVE-2015-2730}