[Secure-testing-commits] r53297 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 8 21:22:53 UTC 2017
Author: carnil
Date: 2017-07-08 21:22:53 +0000 (Sat, 08 Jul 2017)
New Revision: 53297
Modified:
data/CVE/list
Log:
Four ncurses issues fixed upstream with the 20170701 patchlevel
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-08 21:17:44 UTC (rev 53296)
+++ data/CVE/list 2017-07-08 21:22:53 UTC (rev 53297)
@@ -1,8 +1,8 @@
CVE-2017-11113 (In ncurses 6.0, there is a NULL Pointer Dereference in the ...)
- - ncurses <unfixed>
+ - ncurses 6.0+20170701-1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1464691
CVE-2017-11112 (In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the ...)
- - ncurses <unfixed>
+ - ncurses 6.0+20170701-1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1464686
CVE-2017-11111 (In Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers ...)
TODO: check
@@ -966,10 +966,10 @@
- nasm <unfixed>
NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392414
CVE-2017-10685 (In ncurses 6.0, there is a format string vulnerability in the fmt_entry ...)
- - ncurses <unfixed>
+ - ncurses 6.0+20170701-1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1464692
CVE-2017-10684 (In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry ...)
- - ncurses <unfixed>
+ - ncurses 6.0+20170701-1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1464687
CVE-2017-10683 (In mpg123 1.25.0, there is a heap-based buffer over-read in the ...)
{DLA-1017-1}
More information about the Secure-testing-commits
mailing list