[Secure-testing-commits] r51174 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Apr 29 12:04:44 UTC 2017
Author: carnil
Date: 2017-04-29 12:04:44 +0000 (Sat, 29 Apr 2017)
New Revision: 51174
Modified:
data/CVE/list
Log:
Update information for CVE-2017-8288/gnome-shell
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-29 12:01:10 UTC (rev 51173)
+++ data/CVE/list 2017-04-29 12:04:44 UTC (rev 51174)
@@ -69,7 +69,9 @@
CVE-2017-8289 (Stack-based buffer overflow in the ipv6_addr_from_str function in ...)
NOT-FOR-US: RIOS OS
CVE-2017-8288 (gnome-shell 3.22 through 3.24.1 mishandles extensions that fail to ...)
- - gnome-shell <unfixed>
+ - gnome-shell 3.22.3-3
+ NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=781728
+ NOTE: https://github.com/GNOME/gnome-shell/commit/ff425d1db7082e2755d2a405af53861552acf2a1
CVE-2017-8305 (The UDFclient (before 0.8.8) custom strlcpy implementation has a buffer ...)
- udfclient <unfixed> (bug #861347)
CVE-2017-8301 (LibreSSL 2.5.1 to 2.5.3 lacks TLS certificate verification if ...)
More information about the Secure-testing-commits
mailing list