[Secure-testing-commits] r58508 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 13 06:17:30 UTC 2017
Author: carnil
Date: 2017-12-13 06:17:30 +0000 (Wed, 13 Dec 2017)
New Revision: 58508
Modified:
data/CVE/list
Log:
Add CVE-2017-169{09,10}/libraw
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-13 06:10:40 UTC (rev 58507)
+++ data/CVE/list 2017-12-13 06:17:30 UTC (rev 58508)
@@ -4173,8 +4173,14 @@
RESERVED
CVE-2017-16910
RESERVED
+ - libraw <unfixed>
+ NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2017-19
+ NOTE: https://github.com/LibRaw/LibRaw/commit/2f59bac59dbcbf6bbcf01a9f3eed74307e96ca7e
CVE-2017-16909
RESERVED
+ - libraw <unfixed>
+ NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2017-19
+ NOTE: https://github.com/LibRaw/LibRaw/commit/2f59bac59dbcbf6bbcf01a9f3eed74307e96ca7e
CVE-2017-16908 (In Horde Groupware 5.2.19, there is XSS via the Name field during ...)
- php-horde <undetermined>
NOTE: http://code610.blogspot.com/2017/11/rce-via-xss-horde-5219.html
More information about the Secure-testing-commits
mailing list