[Secure-testing-commits] r54766 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 15 13:29:54 UTC 2017
Author: carnil
Date: 2017-08-15 13:29:54 +0000 (Tue, 15 Aug 2017)
New Revision: 54766
Modified:
data/CVE/list
Log:
Add four nss issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-15 12:52:49 UTC (rev 54765)
+++ data/CVE/list 2017-08-15 13:29:54 UTC (rev 54766)
@@ -2674,14 +2674,26 @@
RESERVED
CVE-2017-11699
RESERVED
-CVE-2017-11698
+CVE-2017-11698 [heap-buffer-overflow (write of size 2) in __get_page (lib/dbm/src/h_page.c:704)]
RESERVED
-CVE-2017-11697
+ - nss <unfixed>
+ NOTE: http://seclists.org/fulldisclosure/2017/Aug/17
+ NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1360779
+CVE-2017-11697 [Floating Point Exception in __hash_open (hash.c:229)]
RESERVED
-CVE-2017-11696
+ - nss <unfixed>
+ NOTE: http://seclists.org/fulldisclosure/2017/Aug/17
+ NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1360900
+CVE-2017-11696 [heap-buffer-overflow (write of size 65544) in __hash_open (lib/dbm/src/hash.c:241)]
RESERVED
-CVE-2017-11695
+ - nss <unfixed>
+ NOTE: http://seclists.org/fulldisclosure/2017/Aug/17
+ NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1360778
+CVE-2017-11695 [heap-buffer-overflow (write of size 8) in alloc_segs (lib/dbm/src/hash.c:1105)]
RESERVED
+ - nss <unfixed>
+ NOTE: http://seclists.org/fulldisclosure/2017/Aug/17
+ NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1360782
CVE-2017-11694 (MEDHOST Document Management System contains hard-coded credentials that ...)
NOT-FOR-US: MEDHOST Document Management System
CVE-2017-11693 (MEDHOST Document Management System contains hard-coded credentials that ...)
More information about the Secure-testing-commits
mailing list