Author: hertzog Date: 2014-10-21 09:26:23 +0000 (Tue, 21 Oct 2014) New Revision: 29552
Modified: data/CVE/list Log: Add details about CVE-2014-3660 and the upstream patch Modified: data/CVE/list =================================================================== --- data/CVE/list 2014-10-21 09:14:10 UTC (rev 29551) +++ data/CVE/list 2014-10-21 09:26:23 UTC (rev 29552) @@ -10661,6 +10661,9 @@ - libxml2 <unfixed> (bug #765722) NOTE: https://www.ncsc.nl/actueel/nieuwsberichten/kwetsbaarheid-ontdekt-in-libxml2.html NOTE: https://git.gnome.org/browse/libxml2/commit/?id=be2a7edaf289c5da74a4f9ed3a0b6c733e775230 + NOTE: Beware the upstream patch relies on other commits not + NOTE: available in the squeeze/wheezy version (at least cff2546f that + NOTE: changes how the ent->checked variable is used and likely a3f1e3e5 too) CVE-2014-3659 REJECTED CVE-2014-3658 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits