[Secure-testing-commits] r53825 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jul 23 09:19:43 UTC 2017


Author: carnil
Date: 2017-07-23 09:19:43 +0000 (Sun, 23 Jul 2017)
New Revision: 53825

Modified:
   data/CVE/list
Log:
Add libsass issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-23 09:13:22 UTC (rev 53824)
+++ data/CVE/list	2017-07-23 09:19:43 UTC (rev 53825)
@@ -15,11 +15,14 @@
 CVE-2017-11557
 	RESERVED
 CVE-2017-11556 (There is a stack consumption vulnerability in the ...)
-	TODO: check
+	- libsass <unfixed>
+	NOTE: https://github.com/sass/libsass/issues/2447
 CVE-2017-11555 (There is an illegal address access in the Eval::operator function in ...)
-	TODO: check
+	- libsass <unfixed>
+	NOTE: https://github.com/sass/libsass/issues/2446
 CVE-2017-11554 (There is a stack consumption vulnerability in the lex function in ...)
-	TODO: check
+	- libsass <unfixed>
+	NOTE: https://github.com/sass/libsass/issues/2445
 CVE-2017-11553 (There is an illegal address access in the extend_alias_table function ...)
 	TODO: check
 CVE-2017-11552




More information about the Secure-testing-commits mailing list