[Secure-testing-commits] r46140 - data/CVE

Salvatore Bonaccorso Fri, 11 Nov 2016 22:11:25 -0800

Author: carnil
Date: 2016-11-12 06:10:28 +0000 (Sat, 12 Nov 2016)
New Revision: 46140


Modified:
   data/CVE/list
Log:
Add TODO for CVE-2016-9085

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-11-12 05:41:55 UTC (rev 46139)
+++ data/CVE/list       2016-11-12 06:10:28 UTC (rev 46140)
@@ -651,7 +651,7 @@
        NOTE: Report: https://bugs.chromium.org/p/webp/issues/detail?id=314 
(private)
        NOTE: For libwebp only in examples, but other projects seem to use the 
gifdec.c
        NOTE: Origin of the file seems to be from libav
-       TODO: check other projects
+       TODO: check: 0.5.1-3 claims the upload fixed CVE-2016-8888 and 
CVE-2016-9085 but the taken patch looks different, needs investigation
 CVE-2016-9084 [... "kzalloc is changed to a kcalloc."]
        RESERVED
        - linux <unfixed>


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r46140 - data/CVE

Reply via email to