Author: carnil Date: 2016-10-16 05:27:33 +0000 (Sun, 16 Oct 2016) New Revision: 45346
Modified: data/CVE/list Log: Add CVE ID's for third potrace blogpost issues Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-10-16 05:23:35 UTC (rev 45345) +++ data/CVE/list 2016-10-16 05:27:33 UTC (rev 45346) @@ -3,6 +3,30 @@ {DSA-3693-1} - libgd2 <unfixed> (bug #840806) NOTE: Corresponds to the 0020-Fix-invalid-read-in-gdImageCreateFromTiffPtr.patch patch +CVE-2016-8703 + - potrace 1.13-1 + NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/ + TODO: check +CVE-2016-8702 + - potrace 1.13-1 + NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/ + TODO: check +CVE-2016-8701 + - potrace 1.13-1 + NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/ + TODO: check +CVE-2016-8700 + - potrace 1.13-1 + NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/ + TODO: check +CVE-2016-8699 + - potrace 1.13-1 + NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/ + TODO: check +CVE-2016-8698 + - potrace 1.13-1 + NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/ + TODO: check CVE-2016-8697 [AddressSanitizer: FPE on unknown address 0x508d51 in bm_new ... bitmap.h] - potrace 1.13-1 NOTE: https://blogs.gentoo.org/ago/2016/08/08/potrace-divide-by-zero-in-bm_new-bitmap-h/ _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits