[Secure-testing-commits] r50650 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Apr 14 09:55:51 UTC 2017
Author: carnil
Date: 2017-04-14 09:55:51 +0000 (Fri, 14 Apr 2017)
New Revision: 50650
Modified:
data/CVE/list
Log:
Update CVE-2017-7857/freetype
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-14 09:41:31 UTC (rev 50649)
+++ data/CVE/list 2017-04-14 09:55:51 UTC (rev 50650)
@@ -30,7 +30,10 @@
CVE-2017-7858 (FreeType 2 before 2017-03-07 has an out-of-bounds write related to the ...)
TODO: check
CVE-2017-7857 (FreeType 2 before 2017-03-08 has an out-of-bounds write caused by a ...)
- TODO: check
+ - freetype <not-affected> (Vulnerable code introduced in 2.6.4)
+ NOTE: Introduced after: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=813aca51d28704f7ffc470721167738fa8decb3d
+ NOTE: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=7bbb91fbf47fc0775cc9705673caf0c47a81f94b
+ NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=759
CVE-2017-7856 (LibreOffice before 2017-03-11 has an out-of-bounds write caused by a ...)
TODO: check
CVE-2016-10328 (FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a ...)
More information about the Secure-testing-commits
mailing list