[Secure-testing-commits] r37256 - in data: CVE DLA

Salvatore Bonaccorso Thu, 22 Oct 2015 13:33:12 -0700

Author: carnil
Date: 2015-10-22 20:31:48 +0000 (Thu, 22 Oct 2015)
New Revision: 37256


Modified:
   data/CVE/list
   data/DLA/list
Log:
Update libxml2 issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-10-22 20:08:29 UTC (rev 37255)
+++ data/CVE/list       2015-10-22 20:31:48 UTC (rev 37256)
@@ -11935,13 +11935,16 @@
        - linux-2.6 <removed>
        NOTE: Fixed by: 
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8b01fc86b9f425899f8a3a8fc1c47d73c2c20543
        NOTE: http://www.openwall.com/lists/oss-security/2015/04/20/1
-CVE-2015-XXXX [out-of-bounds memory access]
+CVE-2015-7942
+       - libxml2 <undetermined>
+       NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=744980#c8
+       NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=756456#c0
+       TODO: check
+CVE-2015-7941 [out-of-bounds memory access]
        - libxml2 2.9.2+really2.9.1+dfsg1-0.1 (bug #783010)
-       [squeeze] - libxml2 2.7.8.dfsg-2+squeeze12
-       NOTE: Added workaround item to reflect entry fixed status, remove once 
CVE assigned
        NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=744980
-       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2015/04/19/5
-       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2015/10/22/5
+       NOTE: http://www.openwall.com/lists/oss-security/2015/04/19/5
+       NOTE: http://www.openwall.com/lists/oss-security/2015/10/22/5
 CVE-2015-XXXX [out-of-bounds memory access when parsing an unclosed HTML 
comment]
        - libxml2 2.9.2+really2.9.1+dfsg1-0.1 (bug #782985)
        [squeeze] - libxml2 2.7.8.dfsg-2+squeeze12

Modified: data/DLA/list
===================================================================
--- data/DLA/list       2015-10-22 20:08:29 UTC (rev 37255)
+++ data/DLA/list       2015-10-22 20:31:48 UTC (rev 37256)
@@ -203,7 +203,7 @@
        {CVE-2015-1330}
        [squeeze] - unattended-upgrades 0.62.2+squeeze1
 [03 Jul 2015] DLA-266-1 libxml2 - security update
-       {CVE-2015-1819}
+       {CVE-2015-1819 CVE-2015-7941}
        [squeeze] - libxml2 2.7.8.dfsg-2+squeeze12
 [03 Jul 2015] DLA-265-1 pykerberos - security update
        {CVE-2015-3206}


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r37256 - in data: CVE DLA

Reply via email to