[Secure-testing-commits] r32041 - data/CVE

Salvatore Bonaccorso Fri, 06 Feb 2015 22:05:51 -0800

Author: carnil
Date: 2015-02-07 06:04:37 +0000 (Sat, 07 Feb 2015)
New Revision: 32041


Modified:
   data/CVE/list
Log:
Add two temporary items for libbluray

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-02-07 06:02:46 UTC (rev 32040)
+++ data/CVE/list       2015-02-07 06:04:37 UTC (rev 32041)
@@ -11,6 +11,16 @@
        NOTE: 
http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commitdiff;h=2f1a2dd329b91afe561cd06b872d09630d4edb6a
 CVE-2014-XXXX [RPATH set to untrusted directory]
        [experimental] - noise <unfixed> (bug #759868)
+CVE-2013-XXXX [Directory traversal when expanding certain JAR files]
+       - libbluray <unfixed>
+       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2015/02/06/9
+       NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=959434
+       TODO: check
+CVE-2013-XXXX [TOCTOU race when expanding JAR files]
+       - libbluray <unfixed>
+       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2015/02/06/9
+       NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=959434
+       TODO: check
 CVE-2012-XXXX [Stack smashing while using a lot of connections]
        - libfcgi 2.4.0-8.3 (bug #681591)
        [wheezy] - libfcgi <no-dsa> (Minor issue)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r32041 - data/CVE

Reply via email to