diff options
author | security tracker role <sectracker@soriano.debian.org> | 2020-02-21 08:10:20 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2020-02-21 08:10:20 +0000 |
commit | 063b5ad70703e4cb072e391de2eacdf1202ced56 (patch) | |
tree | c0e47fd99d7a0122aad201c2e3eab5b332d4e0a8 /data/CVE/2016.list | |
parent | 0d0f9b69813bbb591d999cc4838c5c38d14615a8 (diff) |
automatic update
Diffstat (limited to 'data/CVE/2016.list')
-rw-r--r-- | data/CVE/2016.list | 10 |
1 files changed, 4 insertions, 6 deletions
diff --git a/data/CVE/2016.list b/data/CVE/2016.list index 7c70c54fda..22795b5dc9 100644 --- a/data/CVE/2016.list +++ b/data/CVE/2016.list @@ -19467,8 +19467,8 @@ CVE-2016-4607 (libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes be NOTE: contacted Apple for more information, but no reply for quite a while. NOTE: Apple still does not provide information on this CVE, although it is NOTE: possible that it's fixed in 1.1.29 upstream. -CVE-2016-4606 - RESERVED +CVE-2016-4606 (Curl before 7.49.1 in Apple OS X before macOS Sierra prior to 10.12 al ...) + TODO: check CVE-2016-4605 (Calendar in Apple iOS before 9.3.3 allows remote attackers to cause a ...) NOT-FOR-US: Apple CVE-2016-4604 (Safari in Apple iOS before 9.3.3 allows remote attackers to spoof the ...) @@ -23584,14 +23584,12 @@ CVE-2016-3183 (The sycc422_t_rgb function in common/color.c in OpenJPEG before 2 [jessie] - openjpeg2 <no-dsa> (Minor issue) NOTE: http://www.openwall.com/lists/oss-security/2016/03/14/14 NOTE: https://github.com/uclouvain/openjpeg/issues/726 -CVE-2016-3182 [Heap Corruption in opj_free function] - RESERVED +CVE-2016-3182 (The color_esycc_to_rgb function in bin/common/color.c in OpenJPEG befo ...) - openjpeg2 2.1.1-1 [jessie] - openjpeg2 <not-affected> (Vulnerable code not yet present in 2.1.0) NOTE: http://www.openwall.com/lists/oss-security/2016/03/14/13 NOTE: https://github.com/uclouvain/openjpeg/issues/725 -CVE-2016-3181 [Out-Of-Bounds Read in opj_tcd_free_tile function] - RESERVED +CVE-2016-3181 (DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-3182. Reason: T ...) - openjpeg2 2.1.1-1 [jessie] - openjpeg2 <not-affected> (Vulnerable code not yet present in 2.1.0) NOTE: http://www.openwall.com/lists/oss-security/2016/03/14/12 |