[Secure-testing-commits] r50647 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-04-14 09:30:50 +0000 (Fri, 14 Apr 2017)
New Revision: 50647

Modified:
   data/CVE/list
Log:
Update CVE-2017-7869/gnutls

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-14 09:30:39 UTC (rev 50646)
+++ data/CVE/list	2017-04-14 09:30:50 UTC (rev 50647)
@@ -1,7 +1,12 @@
 CVE-2017-7870 (LibreOffice before 2017-01-02 has an out-of-bounds write caused by a ...)
 	TODO: check
 CVE-2017-7869 (GnuTLS before 2017-02-20 has an out-of-bounds write caused by an ...)
-	TODO: check
+	- gnutls28 3.5.8-4
+	[jessie] - gnutls28 <no-dsa> (Minor issue)
+	- gnutls26 <removed>
+	NOTE: https://gitlab.com/gnutls/gnutls/commit/51464af713d71802e3c6d5ac15f1a95132a354fe
+	NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=420
+	NOTE: https://gnutls.org/security.html#GNUTLS-SA-2017-3
 CVE-2017-7868 (International Components for Unicode (ICU) for C/C++ before 2017-02-13 ...)
 	TODO: check
 CVE-2017-7867 (International Components for Unicode (ICU) for C/C++ before 2017-02-13 ...)