[Secure-testing-commits] r55140 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Aug 28 04:46:21 UTC 2017
Author: carnil
Date: 2017-08-28 04:46:21 +0000 (Mon, 28 Aug 2017)
New Revision: 55140
Modified:
data/CVE/list
Log:
Four CVEs addressed in pspp upload to unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-28 04:44:58 UTC (rev 55139)
+++ data/CVE/list 2017-08-28 04:46:21 UTC (rev 55140)
@@ -1602,19 +1602,19 @@
[stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1482331
CVE-2017-12961 (There is an assertion abort in the function parse_attributes() in ...)
- - pspp <unfixed> (unimportant)
+ - pspp 1.0.1-1 (unimportant)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1482436
NOTE: Crash in CLI tool, no security impact
CVE-2017-12960 (There is a reachable assertion abort in the function dict_rename_var() ...)
- - pspp <unfixed> (unimportant)
+ - pspp 1.0.1-1 (unimportant)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1482433
NOTE: Crash in CLI tool, no security impact
CVE-2017-12959 (There is a reachable assertion abort in the function dict_add_mrset() ...)
- - pspp <unfixed> (unimportant)
+ - pspp 1.0.1-1 (unimportant)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1482432
NOTE: Crash in CLI tool, no security impact
CVE-2017-12958 (There is an illegal address access in the function output_hex() in ...)
- - pspp <unfixed> (unimportant)
+ - pspp 1.0.1-1 (unimportant)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1482429
NOTE: Crash in CLI tool, no security impact
CVE-2017-12957 (There is a heap-based buffer over-read in libexiv2 in Exiv2 0.26 that ...)
More information about the Secure-testing-commits
mailing list