Author: carnil
Date: 2014-09-24 05:38:51 +0000 (Wed, 24 Sep 2014)
New Revision: 28989
Modified:
data/CVE/list
Log:
Add libvncserver issues, with TODO item for now
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-09-24 04:44:27 UTC (rev 28988)
+++ data/CVE/list 2014-09-24 05:38:51 UTC (rev 28989)
@@ -2337,16 +2337,26 @@
RESERVED
CVE-2014-6056
RESERVED
-CVE-2014-6055
+CVE-2014-6055 [Multiple stack overflows in File Transfer feature]
RESERVED
-CVE-2014-6054
+ - libvncserver <unfixed>
+ TODO: check
+CVE-2014-6054 [Server crash when scaling factor is set to zero]
RESERVED
-CVE-2014-6053
+ - libvncserver <unfixed>
+ TODO: check
+CVE-2014-6053 [Server crash on a very large ClientCutText message]
RESERVED
-CVE-2014-6052
+ - libvncserver <unfixed>
+ TODO: check
+CVE-2014-6052 [Lack of malloc() return value checking on client side]
+ - libvncserver <unfixed>
+ TODO: check
RESERVED
-CVE-2014-6051
+CVE-2014-6051 [Integer overflow in MallocFrameBuffer() on client side]
RESERVED
+ - libvncserver <unfixed>
+ TODO: check
CVE-2014-6050
RESERVED
CVE-2014-6049
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
