[Secure-testing-commits] r48231 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 20 18:44:55 UTC 2017
Author: carnil
Date: 2017-01-20 18:44:55 +0000 (Fri, 20 Jan 2017)
New Revision: 48231
Modified:
data/CVE/list
Log:
Add patch reference for CVE-2016-9401
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-20 18:42:37 UTC (rev 48230)
+++ data/CVE/list 2017-01-20 18:44:55 UTC (rev 48231)
@@ -13733,6 +13733,7 @@
[wheezy] - bash <no-dsa> (Minor issue)
NOTE: Upstream bash considers this issue only to be a bug.
NOTE: Proposed patch: https://lists.gnu.org/archive/html/bug-bash/2016-11/msg00116.html
+ NOTE: Fixed by (4.4): https://ftp.gnu.org/pub/gnu/bash/bash-4.4-patches/bash44-006
CVE-2016-9399 [jpc_dec.c:1650: void calcstepsizes(uint_fast16_t, int, uint_fast16_t *): Assertion `!((expn + (numrlvls - 1) - (numrlvls - 1 - ((bandno > 0) ? ((bandno + 2) / 3) : (0)))) & (~0x1f))' failed.]
RESERVED
- jasper <removed> (unimportant)
More information about the Secure-testing-commits
mailing list