[Secure-testing-commits] r53315 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sat Jul 8 22:33:51 UTC 2017 

Author: jmm
Date: 2017-07-08 22:33:51 +0000 (Sat, 08 Jul 2017)
New Revision: 53315

Modified:
   data/CVE/list
Log:
lame bug
tcpdump no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-08 22:20:33 UTC (rev 53314)
+++ data/CVE/list	2017-07-08 22:33:51 UTC (rev 53315)
@@ -17,6 +17,8 @@
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1468492
 CVE-2017-11108 (tcpdump 4.9.0 allows remote attackers to cause a denial of service ...)
 	- tcpdump <unfixed> (bug #867718)
+	[stretch] - tcpdump <no-dsa> (Minor issue)
+	[jessie] - tcpdump <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1468504
 CVE-2017-11107 (phpLDAPadmin through 1.2.3 has XSS in htdocs/entry_chooser.php via the ...)
 	- phpldapadmin <unfixed> (bug #867719)
@@ -1484,16 +1486,16 @@
 CVE-2017-9873 (IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to ...)
 	NOT-FOR-US: IrfanView
 CVE-2017-9872 (The III_dequantize_sample function in layer3.c in mpglib, as used in ...)
-	- lame <undetermined>
+	- lame <unfixed> (bug #867725)
 	NOTE: https://blogs.gentoo.org/ago/2017/06/17/lame-stack-based-buffer-overflow-in-iii_dequantize_sample-layer3-c/
 CVE-2017-9871 (The III_i_stereo function in layer3.c in mpglib, as used in ...)
-	- lame <undetermined>
+	- lame <unfixed> (bug #867725)
 	NOTE: https://blogs.gentoo.org/ago/2017/06/17/lame-stack-based-buffer-overflow-in-iii_i_stereo-layer3-c/
 CVE-2017-9870 (The III_i_stereo function in layer3.c in mpglib, as used in ...)
-	- lame <undetermined>
+	- lame <unfixed> (bug #867725)
 	NOTE: https://blogs.gentoo.org/ago/2017/06/17/lame-global-buffer-overflow-in-iii_i_stereo-layer3-c/
 CVE-2017-9869 (The II_step_one function in layer2.c in mpglib, as used in ...)
-	- lame <undetermined>
+	- lame <unfixed> (bug #867725)
 	NOTE: https://blogs.gentoo.org/ago/2017/06/17/lame-global-buffer-overflow-in-ii_step_one-layer2-c/
 CVE-2017-9868 (In Mosquitto through 1.4.12, mosquitto.db (aka the persistence file) is ...)
 	- mosquitto <unfixed> (bug #865959)

More information about the Secure-testing-commits mailing list