[Secure-testing-commits] r58756 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 21 05:08:02 UTC 2017
Author: carnil
Date: 2017-12-21 05:08:02 +0000 (Thu, 21 Dec 2017)
New Revision: 58756
Modified:
data/CVE/list
Log:
Add CVE-2017-17806
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-21 05:07:30 UTC (rev 58755)
+++ data/CVE/list 2017-12-21 05:08:02 UTC (rev 58756)
@@ -81,6 +81,9 @@
CVE-2017-17807 [KEYS: add missing permission check for request_key() destination]
- linux <unfixed>
NOTE: Fixed by: https://git.kernel.org/linus/4dca6ea1d9432052afb06baf2e3ae78188a4410b (v4.15-rc3)
+CVE-2017-17806 [crypto: hmac - require that the underlying hash algorithm is unkeyed]
+ - linux <unfixed>
+ NOTE: Fixed by: https://git.kernel.org/linus/af3ff8045bbf3e32f1a448542e73abb4c8ceb6f1 (v4.15-rc4)
CVE-2017-17804 (In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS) allows ...)
NOT-FOR-US: IKARUS anti.virus
CVE-2017-17803 (In TG Soft Vir.IT eXplorer Lite 8.5.65, the driver file (VIRAGTLT.SYS) ...)
More information about the Secure-testing-commits
mailing list