[Secure-testing-commits] r58439 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Dec 10 19:58:28 UTC 2017
Author: carnil
Date: 2017-12-10 19:58:28 +0000 (Sun, 10 Dec 2017)
New Revision: 58439
Modified:
data/CVE/list
Log:
Add CVE-2017-17484/icu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-10 19:47:31 UTC (rev 58438)
+++ data/CVE/list 2017-12-10 19:58:28 UTC (rev 58439)
@@ -1,3 +1,11 @@
+CVE-2017-17484 [ucnv_convertEx() UTF-8->UTF-8 buffer overflow]
+ [experimental] - icu 60.2-1
+ - icu <unfixed>
+ NOTE: https://ssl.icu-project.org/trac/ticket/13510
+ NOTE: https://ssl.icu-project.org/trac/ticket/13490
+ NOTE: Fixed by: https://ssl.icu-project.org/trac/changeset/40714
+ NOTE: Testcase: https://ssl.icu-project.org/trac/changeset/40715
+ NOTE: POC: https://ssl.icu-project.org/trac/attachment/ticket/13490/poc.cpp
CVE-2017-17483
RESERVED
CVE-2017-17482
More information about the Secure-testing-commits
mailing list