[Secure-testing-commits] r48893 - data/CVE

Salvatore Bonaccorso Mon, 13 Feb 2017 20:55:15 -0800

Author: carnil
Date: 2017-02-14 04:54:54 +0000 (Tue, 14 Feb 2017)
New Revision: 48893


Modified:
   data/CVE/list
Log:
Update information for CVE-2016-2399/libquicktime

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-02-14 03:32:04 UTC (rev 48892)
+++ data/CVE/list       2017-02-14 04:54:54 UTC (rev 48893)
@@ -38145,7 +38145,8 @@
 CVE-2016-2400
        RESERVED
 CVE-2016-2399 (Integer overflow in the quicktime_read_pascal function in 
libquicktime ...)
-       TODO: check
+       - libquicktime <unfixed>
+       NOTE: PoC: http://www.nemux.org/2016/02/23/libquicktime-1-2-4/
 CVE-2016-2398 (Comcast XFINITY Home Security System does not properly maintain 
...)
        NOT-FOR-US: XFINITY
 CVE-2016-2397 (The cliserver implementation in Dell SonicWALL GMS, Analyzer, 
and UMA ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r48893 - data/CVE

Reply via email to