[Secure-testing-commits] r50642 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Apr 14 06:20:03 UTC 2017


Author: carnil
Date: 2017-04-14 06:20:03 +0000 (Fri, 14 Apr 2017)
New Revision: 50642

Modified:
   data/CVE/list
Log:
Add bug references for libosip2 issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-14 05:53:01 UTC (rev 50641)
+++ data/CVE/list	2017-04-14 06:20:03 UTC (rev 50642)
@@ -3,7 +3,7 @@
 CVE-2017-7854 (The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote ...)
 	- radare2 <not-affected> (Vulnerable code introduced later)
 CVE-2017-7853 (In libosip2 in GNU oSIP 5.0.0, a malformed SIP message can lead to a ...)
-	- libosip2 <unfixed>
+	- libosip2 <unfixed> (bug #860287)
 	NOTE: https://savannah.gnu.org/support/index.php?109265
 	NOTE: Fixed by: https://git.savannah.gnu.org/cgit/osip.git/commit/?id=1ae06daf3b2375c34af23083394a6f010be24a45
 CVE-2017-7852
@@ -11,15 +11,15 @@
 CVE-2017-7851
 	RESERVED
 CVE-2016-10326 (In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a ...)
-	- libosip2 <unfixed>
+	- libosip2 <unfixed> (bug #860287)
 	NOTE: https://savannah.gnu.org/support/index.php?109132
 	NOTE: Fixed by: https://git.savannah.gnu.org/cgit/osip.git/commit/?id=b9dd097b5b24f5ee54b0a8739e59641cd51b6ead
 CVE-2016-10325 (In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a ...)
-	- libosip2 <unfixed>
+	- libosip2 <unfixed> (bug #860287)
 	NOTE: https://savannah.gnu.org/support/index.php?109131
 	NOTE: https://git.savannah.gnu.org/cgit/osip.git/commit/?id=1d9fb1d3a71cc85ef95352e549b140c706cf8696
 CVE-2016-10324 (In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a ...)
-	- libosip2 <unfixed>
+	- libosip2 <unfixed> (bug #860287)
 	NOTE: https://savannah.gnu.org/support/index.php?109133
 	NOTE: https://git.savannah.gnu.org/cgit/osip.git/commit/?id=7e0793e15e21f68337e130c67b031ca38edf055f
 CVE-2017-7850




More information about the Secure-testing-commits mailing list