[Secure-testing-commits] r50616 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Apr 13 08:34:02 UTC 2017
Author: carnil
Date: 2017-04-13 08:34:02 +0000 (Thu, 13 Apr 2017)
New Revision: 50616
Modified:
data/CVE/list
Log:
Update information for radare2
Note for reviewers: please double-check. The respective wasm support was
only introduced later an the fix lies in libr/bin/format/wasm/wasm.c but
the description might indicate the issue is in read_u32_leb128.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-13 07:26:50 UTC (rev 50615)
+++ data/CVE/list 2017-04-13 08:34:02 UTC (rev 50616)
@@ -61,7 +61,8 @@
CVE-2017-7717
RESERVED
CVE-2017-7716 (The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 ...)
- - radare2 <unfixed>
+ - radare2 <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/radare/radare2/issues/7260
CVE-2017-7715
RESERVED
CVE-2017-7714
More information about the Secure-testing-commits
mailing list