[Secure-testing-commits] r48984 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Feb 16 04:59:55 UTC 2017
Author: carnil
Date: 2017-02-16 04:59:55 +0000 (Thu, 16 Feb 2017)
New Revision: 48984
Modified:
data/CVE/list
Log:
More zziplib issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-16 04:56:23 UTC (rev 48983)
+++ data/CVE/list 2017-02-16 04:59:55 UTC (rev 48984)
@@ -85,18 +85,32 @@
NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-assertion-failure-in-seeko-c/
CVE-2017-5980
RESERVED
+ - zziplib <unfixed>
+ NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-null-pointer-dereference-in-zzip_mem_entry_new-memdisk-c/
CVE-2017-5979
RESERVED
+ - zziplib <unfixed>
+ NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-null-pointer-dereference-in-prescan_entry-fseeko-c/
CVE-2017-5978
RESERVED
+ - zziplib <unfixed>
+ NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-out-of-bounds-read-in-zzip_mem_entry_new-memdisk-c/
CVE-2017-5977
RESERVED
+ - zziplib <unfixed>
+ NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-invalid-memory-read-in-zzip_mem_entry_extra_block-memdisk-c/
CVE-2017-5976
RESERVED
+ - zziplib <unfixed>
+ NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-heap-based-buffer-overflow-in-zzip_mem_entry_extra_block-memdisk-c/
CVE-2017-5975
RESERVED
+ - zziplib <unfixed>
+ NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-heap-based-buffer-overflow-in-__zzip_get64-fetch-c/
CVE-2017-5974
RESERVED
+ - zziplib <unfixed>
+ NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-heap-based-buffer-overflow-in-__zzip_get32-fetch-c/
CVE-2017-5973 [Qemu: usb: infinite loop while doing control transfer in xhci_kick_epctx]
RESERVED
- qemu <unfixed>
More information about the Secure-testing-commits
mailing list