[Secure-testing-commits] r48379 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-01-25 18:08:56 +0000 (Wed, 25 Jan 2017)
New Revision: 48379

Modified:
   data/CVE/list
Log:
Add CVE-2016-10165/lcms2

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-01-25 16:46:07 UTC (rev 48378)
+++ data/CVE/list	2017-01-25 18:08:56 UTC (rev 48379)
@@ -31,6 +31,10 @@
 CVE-2017-XXXX [phpMyAdmin PMASA-2017-1 - PMASA-2017-7]
 	- phpmyadmin 4:4.6.6-1 (unimportant)
 	NOTE: all minor issues
+CVE-2016-10165 [heap OOB read parsing crafted ICC profile]
+	- lcms2 <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1367357
+	NOTE: https://github.com/mm2/Little-CMS/commit/5ca71a7bc18b6897ab21d815d15e218e204581e2
 CVE-2016-10164 [heap overflow]
 	- libxpm 1:3.5.12-1
 	NOTE: Fixed by: https://cgit.freedesktop.org/xorg/lib/libXpm/commit/?id=d1167418f0fd02a27f617ec5afd6db053afbe185