[Secure-testing-commits] r51101 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Apr 27 09:23:21 UTC 2017
Author: carnil
Date: 2017-04-27 09:23:21 +0000 (Thu, 27 Apr 2017)
New Revision: 51101
Modified:
data/CVE/list
Log:
Add one new freetype issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-27 09:07:49 UTC (rev 51100)
+++ data/CVE/list 2017-04-27 09:23:21 UTC (rev 51101)
@@ -5,6 +5,9 @@
CVE-2017-8291 [shell injection]
- ghostscript <unfixed> (bug #861295)
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697808
+CVE-2017-8287 [out-of-bounds write via t1_builder_close_contour function]
+ - freetype <unfixed> (bug #861308)
+ NOTE: Fixed by: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=3774fc08b502c3e685afca098b6e8a195aded6a0
CVE-2017-8286
RESERVED
CVE-2017-8285
More information about the Secure-testing-commits
mailing list