[Secure-testing-commits] r53537 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sun Jul 16 09:10:14 UTC 2017


Author: sectracker
Date: 2017-07-16 09:10:14 +0000 (Sun, 16 Jul 2017)
New Revision: 53537

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-16 08:59:28 UTC (rev 53536)
+++ data/CVE/list	2017-07-16 09:10:14 UTC (rev 53537)
@@ -1,3 +1,19 @@
+CVE-2017-11342 (There is an illegal address access in ast.cpp of LibSass 3.4.5. A ...)
+	TODO: check
+CVE-2017-11341 (There is a heap based buffer over-read in lexer.hpp of LibSass 3.4.5. A ...)
+	TODO: check
+CVE-2017-11340 (There is a Segmentation fault in the XmpParser::terminate() function in ...)
+	TODO: check
+CVE-2017-11339 (There is a heap-based buffer overflow in the Image::printIFDStructure ...)
+	TODO: check
+CVE-2017-11338 (There is an infinite loop in the Exiv2::Image::printIFDStructure ...)
+	TODO: check
+CVE-2017-11337 (There is an invalid free in the Action::TaskFactory::cleanup function ...)
+	TODO: check
+CVE-2017-11336 (There is a heap-based buffer over-read in the Image::printIFDStructure ...)
+	TODO: check
+CVE-2017-11335 (There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF ...)
+	TODO: check
 CVE-2017-XXXX [avoid a memory leak during screenshot]
 	- imagemagick 8:6.9.7.4+dfsg-12 (bug #867897)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/556




More information about the Secure-testing-commits mailing list