[Secure-testing-commits] r58522 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 13 20:47:15 UTC 2017
Author: carnil
Date: 2017-12-13 20:47:15 +0000 (Wed, 13 Dec 2017)
New Revision: 58522
Modified:
data/CVE/list
Log:
Add references for the texlive* CVE assingment
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-13 20:45:33 UTC (rev 58521)
+++ data/CVE/list 2017-12-13 20:47:15 UTC (rev 58522)
@@ -175,6 +175,9 @@
- texlive-base <unfixed>
- texlive-bin <unfixed>
- context <unfixed>
+ NOTE: https://sources.debian.org/src/context/2017.05.15.20170613-2/texmf-dist/scripts/context/stubs/mswin/mtxrun.lua/?hl=3424#L3424
+ NOTE: https://sources.debian.org/src/texlive-base/2017.20171128-1/texmf-dist/tex/luatex/lualibs/lualibs-os.lua/#L153
+ NOTE: https://sources.debian.org/src/context/2017.05.15.20170613-2/texmf-dist/scripts/context/stubs/mswin/mtxrun.lua/?hl=3424#L3424
CVE-2017-17512 (sensible-browser in sensible-utils before 0.0.11 does not validate ...)
- sensible-utils 0.0.11 (bug #881767)
CVE-2017-17511 [argument injection]
More information about the Secure-testing-commits
mailing list