[Secure-testing-commits] r58798 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 21 13:03:56 UTC 2017
Author: carnil
Date: 2017-12-21 13:03:56 +0000 (Thu, 21 Dec 2017)
New Revision: 58798
Modified:
data/CVE/list
Log:
Reference fixes for CVE-2017-17787
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-21 13:02:58 UTC (rev 58797)
+++ data/CVE/list 2017-12-21 13:03:56 UTC (rev 58798)
@@ -292,6 +292,8 @@
NOTE: Some OOB read/write can be reproduced in sid with "valgrind --trace-children=yes gimp <reproducerfile>"
CVE-2017-17787 (In GIMP 2.8.22, there is a heap-based buffer over-read in ...)
- gimp <unfixed> (unimportant)
+ NOTE: https://git.gnome.org/browse/GIMP/commit/?id=eb2980683e6472aff35a3117587c4f814515c74d (master)
+ NOTE: https://git.gnome.org/browse/GIMP/commit/?id=87ba505fff85989af795f4ab6a047713f4d9381d (gimp-2-8)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790853
NOTE: Crash in desktop tool, no/negligable security impact
CVE-2017-17760
More information about the Secure-testing-commits
mailing list