[Secure-testing-commits] r53582 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jul 17 19:30:47 UTC 2017
Author: carnil
Date: 2017-07-17 19:30:47 +0000 (Mon, 17 Jul 2017)
New Revision: 53582
Modified:
data/CVE/list
Log:
Add CVE-2017-10980
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-17 19:30:37 UTC (rev 53581)
+++ data/CVE/list 2017-07-17 19:30:47 UTC (rev 53582)
@@ -1191,8 +1191,14 @@
NOTE: Mark as fixed in 3.0.12+dfsg-3 the first 3.x version in unstable
NOTE: This is not fully technically correct, the issue affects only the 2.x
NOTE: series but not 3.x.
-CVE-2017-10980
+CVE-2017-10980 [DHCP - Memory leak in decode_tlv()]
RESERVED
+ - freeradius 3.0.12+dfsg-3
+ NOTE: http://freeradius.org/security/fuzzer-2017.html#FR-GV-203
+ NOTE: https://github.com/FreeRADIUS/freeradius-server/commit/ef0727fc68e211a36637b5c4e4a6fa1326f0a029
+ NOTE: Mark as fixed in 3.0.12+dfsg-3 the first 3.x version in unstable
+ NOTE: This is not fully technically correct, the issue affects only the 2.x
+ NOTE: series but not 3.x.
CVE-2017-10979
RESERVED
CVE-2017-10978
More information about the Secure-testing-commits
mailing list