[Secure-testing-commits] r54653 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Aug 11 22:07:06 UTC 2017 

Author: jmm
Date: 2017-08-11 22:07:06 +0000 (Fri, 11 Aug 2017)
New Revision: 54653

Modified:
   data/CVE/list
Log:
fontforge upstream fixes


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-11 22:06:34 UTC (rev 54652)
+++ data/CVE/list	2017-08-11 22:07:06 UTC (rev 54653)
@@ -3029,15 +3029,19 @@
 CVE-2017-11577 (FontForge 20161012 is vulnerable to a buffer over-read in getsid ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3088
+	NOTE: https://github.com/fontforge/fontforge/commit/3245d354865def9d712bdffe61fa211ad6aa4081
 CVE-2017-11576 (FontForge 20161012 does not ensure a positive size in a weight vector ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3091
+	NOTE: https://github.com/fontforge/fontforge/commit/df349365630344ef3004a3c7934c7e7496692fb1
 CVE-2017-11575 (FontForge 20161012 is vulnerable to a buffer over-read in strnmatch ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3096
+	NOTE: https://github.com/fontforge/fontforge/commit/4de0c58a01e5e30610c200e9aea98bc7db12c7ac
 CVE-2017-11574 (FontForge 20161012 is vulnerable to a heap-based buffer overflow in ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3090
+	NOTE: https://github.com/fontforge/fontforge/commit/62b6433a81ee7ed6e0ac2d6b09ac85b885046ac3
 CVE-2017-11573 (FontForge 20161012 is vulnerable to a buffer over-read in ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3098
@@ -3047,12 +3051,14 @@
 CVE-2017-11571 (FontForge 20161012 is vulnerable to a stack-based buffer overflow in ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3087
+	NOTE: https://github.com/fontforge/fontforge/commit/5a0c6522682b0788fc478dd159dd6168cb5fa38b
 CVE-2017-11570 (FontForge 20161012 is vulnerable to a buffer over-read in umodenc ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3097
 CVE-2017-11569 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3093
+	NOTE: https://github.com/fontforge/fontforge/commit/7bfec47910293bf149b8debe44c6f3f788506092
 CVE-2017-11568 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...)
 	- fontforge <unfixed> (bug #869614)
 	NOTE: https://github.com/fontforge/fontforge/issues/3089

More information about the Secure-testing-commits mailing list