[Secure-testing-commits] r50475 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Apr 8 20:02:16 UTC 2017
Author: carnil
Date: 2017-04-08 20:02:16 +0000 (Sat, 08 Apr 2017)
New Revision: 50475
Modified:
data/CVE/list
Log:
Add bug references for yaml-cpp and yaml-cpp0.3
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-08 15:42:18 UTC (rev 50474)
+++ data/CVE/list 2017-04-08 20:02:16 UTC (rev 50475)
@@ -4562,9 +4562,9 @@
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697548
NOTE: Fixed by: http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git;a=commitdiff;h=bfa6b2ecbe48edc69a7d9d22a12419aed25960b8
CVE-2017-5950 (The SingleDocParser::HandleNode function in yaml-cpp (aka LibYaml-C++) ...)
- - yaml-cpp <unfixed> (low)
+ - yaml-cpp <unfixed> (low; bug #859891)
[jessie] - yaml-cpp <no-dsa> (Minor issue)
- - yaml-cpp0.3 <unfixed> (low)
+ - yaml-cpp0.3 <unfixed> (low; bug #859892)
[jessie] - yaml-cpp0.3 <no-dsa> (Minor issue)
NOTE: https://github.com/jbeder/yaml-cpp/issues/459
CVE-2017-5949 (JavaScriptCore in WebKit, as distributed in Safari Technology Preview ...)
More information about the Secure-testing-commits
mailing list