[Secure-testing-commits] r54766 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Aug 15 13:29:54 UTC 2017


Author: carnil
Date: 2017-08-15 13:29:54 +0000 (Tue, 15 Aug 2017)
New Revision: 54766

Modified:
   data/CVE/list
Log:
Add four nss issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-15 12:52:49 UTC (rev 54765)
+++ data/CVE/list	2017-08-15 13:29:54 UTC (rev 54766)
@@ -2674,14 +2674,26 @@
 	RESERVED
 CVE-2017-11699
 	RESERVED
-CVE-2017-11698
+CVE-2017-11698 [heap-buffer-overflow (write of size 2) in __get_page (lib/dbm/src/h_page.c:704)]
 	RESERVED
-CVE-2017-11697
+	- nss <unfixed>
+	NOTE: http://seclists.org/fulldisclosure/2017/Aug/17
+	NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1360779
+CVE-2017-11697 [Floating Point Exception in __hash_open (hash.c:229)]
 	RESERVED
-CVE-2017-11696
+	- nss <unfixed>
+	NOTE: http://seclists.org/fulldisclosure/2017/Aug/17
+	NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1360900
+CVE-2017-11696 [heap-buffer-overflow (write of size 65544) in __hash_open (lib/dbm/src/hash.c:241)]
 	RESERVED
-CVE-2017-11695
+	- nss <unfixed>
+	NOTE: http://seclists.org/fulldisclosure/2017/Aug/17
+	NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1360778
+CVE-2017-11695 [heap-buffer-overflow (write of size 8) in alloc_segs (lib/dbm/src/hash.c:1105)]
 	RESERVED
+	- nss <unfixed>
+	NOTE: http://seclists.org/fulldisclosure/2017/Aug/17
+	NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1360782
 CVE-2017-11694 (MEDHOST Document Management System contains hard-coded credentials that ...)
 	NOT-FOR-US: MEDHOST Document Management System
 CVE-2017-11693 (MEDHOST Document Management System contains hard-coded credentials that ...)




More information about the Secure-testing-commits mailing list