Author: fgeek-guest
Date: 2013-05-29 18:34:09 +0000 (Wed, 29 May 2013)
New Revision: 22400
Modified:
data/CVE/list
Log:
CVE-2013-2126 and CVE-2013-2127 assigned for libraw vulnerabilities
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-05-29 18:31:48 UTC (rev 22399)
+++ data/CVE/list 2013-05-29 18:34:09 UTC (rev 22400)
@@ -42,9 +42,6 @@
TODO: check
CVE-2013-3660 (The EPATHOBJ::pprFlattenRec function in win32k.sys in Microsoft
...)
TODO: check
-CVE-2013-XXXX [libraw: multiple issues]
- - libraw <unfixed>
- NOTE: http://www.openwall.com/lists/oss-security/2013/05/28/3
CVE-2012-6563 (engine/lib/access.php in Elgg before 1.8.5 does not properly
clear ...)
- elgg <itp> (bug #526197)
CVE-2012-6562 (engine/lib/users.php in Elgg before 1.8.5 does not properly
specify ...)
@@ -3491,10 +3488,18 @@
RESERVED
CVE-2013-2128
RESERVED
-CVE-2013-2127
+CVE-2013-2127 [libraw: buffer overflow]
RESERVED
-CVE-2013-2126
+ - libraw <unfixed>
+ NOTE: http://www.openwall.com/lists/oss-security/2013/05/28/3
+ NOTE:
https://github.com/LibRaw/LibRaw/commit/2f912f5b33582961b1cdbd9fd828589f8b78f21d
+ TODO: check and report bug
+CVE-2013-2126 [libraw: double-free]
RESERVED
+ - libraw <unfixed>
+ NOTE: http://www.openwall.com/lists/oss-security/2013/05/28/3
+ NOTE:
https://github.com/LibRaw/LibRaw/commit/19ffddb0fe1a4ffdb459b797ffcf7f490d28b5a6
+ TODO: check and report bug
CVE-2013-2125
RESERVED
- opensmtpd <itp> (bug #706985)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
