[Secure-testing-commits] r44678 - data/CVE

Markus Koschany Sat, 17 Sep 2016 07:01:35 -0700

Author: apo
Date: 2016-09-17 14:00:48 +0000 (Sat, 17 Sep 2016)
New Revision: 44678


Modified:
   data/CVE/list
Log:
CVE-2016-7410: dwarfutils not-affected in Wheezy and Jessie

The reproducer shows no errors with Valgrind. The version in Sid appears to be
affected though.


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-09-17 13:45:57 UTC (rev 44677)
+++ data/CVE/list       2016-09-17 14:00:48 UTC (rev 44678)
@@ -2296,6 +2296,9 @@
 CVE-2016-7410 [Heap buffer overflow in _dwarf_read_loc_section]
        RESERVED
        - dwarfutils <unfixed> (bug #838019)
+       [jessie] - dwarfutils <not-affected> (reproducer shows no errors with 
valgrind)
+       [wheezy] - dwarfutils <not-affected> (reproducer shows no errors with 
valgrind)
+       NOTE: http://seclists.org/oss-sec/2016/q3/490
 CVE-2016-7409
        RESERVED
        - dropbear 2016.74-1


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r44678 - data/CVE

Reply via email to