Author: carnil Date: 2016-06-30 14:13:08 +0000 (Thu, 30 Jun 2016) New Revision: 42914
Modified: data/CVE/list Log: Add CVE-2016-6131, unchecked and needs review for the various packages embedding the source file NOTE for reviewers, one evaluated will be no-dsa as the other issues. Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-06-30 13:28:21 UTC (rev 42913) +++ data/CVE/list 2016-06-30 14:13:08 UTC (rev 42914) @@ -1,3 +1,15 @@ +CVE-2016-6131 + - libiberty <unfixed> + - valgrind <unfixed> + - ht <undetermined> + - binutils <unfixed> + - binutils-h8300-hms <unfixed> + - gcc-h8300-hms <unfixed> + - gdb <unfixed> + - nescc <unfixed> + NOTE: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=71696 + NOTE: Patches (under review): https://gcc.gnu.org/ml/gcc-patches/2016-06/msg02030.html + TODO: check CVE-2016-6128 [Invalid color index is not properly handled leading to denial of service] - libgd2 <unfixed> (bug #829062) [wheezy] - libgd2 <not-affected> (Vulnerable code not present) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
