[Secure-testing-commits] r54192 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 2 09:19:05 UTC 2017
Author: carnil
Date: 2017-08-02 09:19:04 +0000 (Wed, 02 Aug 2017)
New Revision: 54192
Modified:
data/CVE/list
Log:
Add three new libytnef issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-02 09:15:27 UTC (rev 54191)
+++ data/CVE/list 2017-08-02 09:19:04 UTC (rev 54192)
@@ -111,13 +111,16 @@
CVE-2017-12145 (In libquicktime 1.2.4, an allocation failure was found in the function ...)
TODO: check
CVE-2017-12144 (In ytnef 1.9.2, an allocation failure was found in the function ...)
- TODO: check
+ - libytnef <unfixed>
+ NOTE: https://github.com/Yeraze/ytnef/issues/51
CVE-2017-12143 (In libquicktime 1.2.4, an allocation failure was found in the function ...)
TODO: check
CVE-2017-12142 (In ytnef 1.9.2, an invalid memory read vulnerability was found in the ...)
- TODO: check
+ - libytnef <unfixed>
+ NOTE: https://github.com/Yeraze/ytnef/issues/49
CVE-2017-12141 (In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in ...)
- TODO: check
+ - libytnef <unfixed>
+ NOTE: https://github.com/Yeraze/ytnef/issues/50
CVE-2017-12140 (The ReadDCMImage function in coders\dcm.c in ImageMagick 7.0.6-1 has an ...)
- imagemagick <unfixed>
NOTE: https://github.com/ImageMagick/ImageMagick/issues/533
More information about the Secure-testing-commits
mailing list