Author: hertzog
Date: 2017-01-27 11:22:58 +0000 (Fri, 27 Jan 2017)
New Revision: 48448
Modified:
data/CVE/list
Log:
Add links to upstream tickets for CVE-2016-5824 and CVE-2016-9584
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-27 10:59:53 UTC (rev 48447)
+++ data/CVE/list 2017-01-27 11:22:58 UTC (rev 48448)
@@ -13154,6 +13154,7 @@
CVE-2016-9584 (libical allows remote attackers to cause a denial of service
...)
- libical <unfixed> (bug #852034)
NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/5
+ NOTE: Upstream ticket: https://github.com/libical/libical/issues/253
CVE-2016-9583 [Out of bounds heap read in jpc_pi_nextpcrl()]
RESERVED
- jasper <removed> (unimportant)
@@ -26084,6 +26085,7 @@
NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1275400
NOTE: Reproducer: https://bugzilla.mozilla.org/attachment.cgi?id=8757553
NOTE: Upstream ticket: https://github.com/libical/libical/issues/286
+ NOTE: Upstream ticket: https://github.com/libical/libical/issues/251
CVE-2016-5823 [Libical attempting free on address which was not malloc()-ed]
RESERVED
- libical 1.0-1
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
