[Secure-testing-commits] r31117 - data/CVE

Salvatore Bonaccorso Sat, 03 Jan 2015 20:40:52 -0800

Author: carnil
Date: 2015-01-04 04:39:48 +0000 (Sun, 04 Jan 2015)
New Revision: 31117


Modified:
   data/CVE/list
Log:
Add CVE-2014-9495, not-affecting libpng in packaged versions

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-01-04 04:35:41 UTC (rev 31116)
+++ data/CVE/list       2015-01-04 04:39:48 UTC (rev 31117)
@@ -6,6 +6,10 @@
        - arj <unfixed> (bug #774435)
 CVE-2015-XXXX [symlink directory traversal]
        - arj <unfixed> (bug #774434)
+CVE-2014-9495 [Heap Overflow]
+       - libpng <not-affected> (Affects 1.5.x and 1.6.x series)
+       NOTE: http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt
+       NOTE: http://sourceforge.net/p/png-mng/mailman/message/33173461/
 CVE-2014-9465
        - zarafa <itp> (bug #658433)
 CVE-2014-9433


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r31117 - data/CVE

Reply via email to