[Secure-testing-commits] r37846 - data/CVE

Salvatore Bonaccorso Mon, 23 Nov 2015 23:34:18 -0800

Author: carnil
Date: 2015-11-24 07:33:37 +0000 (Tue, 24 Nov 2015)
New Revision: 37846


Modified:
   data/CVE/list
Log:
Add description for CVE-2015-7498, update TODO

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-11-24 07:33:28 UTC (rev 37845)
+++ data/CVE/list       2015-11-24 07:33:37 UTC (rev 37846)
@@ -2252,12 +2252,12 @@
        NOTE: 
https://git.gnome.org/browse/libxml2/commit/?id=28cd9cb747a94483f4aea7f0968d202c20bb4cfc
 (v2.9.3)
        NOTE: 
https://git.gnome.org/browse/libxml2/commit/?id=35bcb1d758ed70aa7b257c9c3b3ff55e54e3d0da
 (v2.9.3)
        TODO: check affected versions
-CVE-2015-7498
+CVE-2015-7498 [processes entities after encoding conversion failures]
        RESERVED
        - libxml2 <unfixed>
        NOTE: 
https://git.gnome.org/browse/libxml2/commit/?id=afd27c21f6b36e22682b7da20d726bce2dcb2f43
 (v2.9.3)
        NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=756527
-       TODO: check affected versions
+       TODO: check affected versions (upstream bug not yet open)
 CVE-2015-7497 [heap buffer overflow in xmlDictComputeFastQKey]
        RESERVED
        - libxml2 <unfixed>


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r37846 - data/CVE

Reply via email to