[Secure-testing-commits] r29030 - data/CVE

Raphaël Hertzog Thu, 25 Sep 2014 01:19:14 -0700

Author: hertzog
Date: 2014-09-25 08:18:04 +0000 (Thu, 25 Sep 2014)
New Revision: 29030


Modified:
   data/CVE/list
Log:
Add severity and bug for CVE-2014-3158/ppp

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2014-09-25 08:17:55 UTC (rev 29029)
+++ data/CVE/list       2014-09-25 08:18:04 UTC (rev 29030)
@@ -9456,9 +9456,10 @@
        NOT-FOR-US: Android
 CVE-2014-3158
        RESERVED
-       - ppp <unfixed>
+       - ppp <unfixed> (medium; bug #762789)
        NOTE: 
https://github.com/paulusmack/ppp/commit/7658e8257183f062dc01f87969c140707c7e52cb
        NOTE: http://marc.info/?l=linux-ppp&m=140764978420764
+       NOTE: No known exploit yet but potential local privilege escalation to 
root for users in "dip" group
 CVE-2014-3157 (Heap-based buffer overflow in the 
FFmpegVideoDecoder::GetVideoBuffer ...)
        {DSA-2959-1}
        - chromium-browser 35.0.1916.153-1


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r29030 - data/CVE

Reply via email to