[Secure-testing-commits] r31590 - data/CVE

Wed, 21 Jan 2015 21:30:13 -0800 

Author: carnil
Date: 2015-01-22 05:29:22 +0000 (Thu, 22 Jan 2015)
New Revision: 31590

Modified:
   data/CVE/list
Log:
Add fixed version for vlc upload

TODO/NOTE: only a part of the CVE assigned corrected? Needs to be
double-checked if other are maybe not-affected.

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-01-22 04:19:13 UTC (rev 31589)
+++ data/CVE/list       2015-01-22 05:29:22 UTC (rev 31590)
@@ -298,23 +298,23 @@
        - vlc <unfixed> (bug #775866)
        [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
 CVE-2014-9630 [Invalid memory access in rtp code]
-       - vlc <unfixed> (bug #775866)
+       - vlc 2.2.0~rc2-2 (bug #775866)
        [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
        NOTE: 
https://github.com/videolan/vlc/commit/204291467724867b79735c0ee3aeb0dbc2200f97
 CVE-2014-9629 [integer overflow with resultant buffer overflow]
-       - vlc <unfixed> (bug #775866)
+       - vlc 2.2.0~rc2-2 (bug #775866)
        [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
        NOTE: 
https://github.com/videolan/vlc/commit/9bb0353a5c63a7f8c6fc853faa3df4b4df1f5eb5
 CVE-2014-9628 [attacker-triggered zero-size malloc with resultant buffer 
overflow]
-       - vlc <unfixed> (bug #775866)
+       - vlc 2.2.0~rc2-2 (bug #775866)
        [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
        NOTE: 
https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39
 CVE-2014-9627 [integer truncation on 32-bit platforms]
-       - vlc <unfixed> (bug #775866)
+       - vlc 2.2.0~rc2-2 (bug #775866)
        [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
        NOTE: 
https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39
 CVE-2014-9626 [integer underflow]
-       - vlc <unfixed> (bug #775866)
+       - vlc 2.2.0~rc2-2 (bug #775866)
        [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
        NOTE: 
https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39
 CVE-2014-9625 [Buffer overflow in updater]


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to