[Secure-testing-commits] r29552 - data/CVE

Raphaël Hertzog Tue, 21 Oct 2014 02:27:07 -0700

Author: hertzog
Date: 2014-10-21 09:26:23 +0000 (Tue, 21 Oct 2014)
New Revision: 29552


Modified:
   data/CVE/list
Log:
Add details about CVE-2014-3660 and the upstream patch

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2014-10-21 09:14:10 UTC (rev 29551)
+++ data/CVE/list       2014-10-21 09:26:23 UTC (rev 29552)
@@ -10661,6 +10661,9 @@
        - libxml2 <unfixed> (bug #765722)
        NOTE: 
https://www.ncsc.nl/actueel/nieuwsberichten/kwetsbaarheid-ontdekt-in-libxml2.html
        NOTE: 
https://git.gnome.org/browse/libxml2/commit/?id=be2a7edaf289c5da74a4f9ed3a0b6c733e775230
+       NOTE: Beware the upstream patch relies on other commits not
+       NOTE: available in the squeeze/wheezy version (at least cff2546f that
+       NOTE: changes how the ent->checked variable is used and likely a3f1e3e5 
too)
 CVE-2014-3659
        REJECTED
 CVE-2014-3658


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r29552 - data/CVE

Reply via email to