Author: carnil
Date: 2016-10-16 05:21:00 +0000 (Sun, 16 Oct 2016)
New Revision: 45344
Modified:
data/CVE/list
Log:
CVe-2016-869{4,5,6}/potrce, kept the TODO for now to double-check
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-15 21:10:19 UTC (rev 45343)
+++ data/CVE/list 2016-10-16 05:21:00 UTC (rev 45344)
@@ -3,6 +3,18 @@
{DSA-3693-1}
- libgd2 <unfixed> (bug #840806)
NOTE: Corresponds to the
0020-Fix-invalid-read-in-gdImageCreateFromTiffPtr.patch patch
+CVE-2016-8696
+ - potrace 1.13-1
+ NOTE:
https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
+CVE-2016-8695
+ - potrace 1.13-1
+ NOTE:
https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
+CVE-2016-8694
+ - potrace 1.13-1
+ NOTE:
https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
+ TODO: check
CVE-2016-8670 [Stack Buffer Overflow in GD dynamicGetbuf]
{DSA-3693-1}
- libgd2 <unfixed> (bug #840805)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
