[Secure-testing-commits] r53827 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jul 23 09:20:08 UTC 2017


Author: carnil
Date: 2017-07-23 09:20:07 +0000 (Sun, 23 Jul 2017)
New Revision: 53827

Modified:
   data/CVE/list
Log:
Add new tcpdump issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-23 09:19:55 UTC (rev 53826)
+++ data/CVE/list	2017-07-23 09:20:07 UTC (rev 53827)
@@ -42,15 +42,20 @@
 CVE-2017-11546
 	RESERVED
 CVE-2017-11545 (tcpdump 4.9.0 has a Segmentation Violation in the compressed_sl_print ...)
-	TODO: check
+	- tcpdump <unfixed>
+	NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/segv/print-sl
 CVE-2017-11544 (tcpdump 4.9.0 has a Segmentation Violation in the compressed_sl_print ...)
-	TODO: check
+	- tcpdump <unfixed>
+	NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/segv/print-sl
 CVE-2017-11543 (tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in ...)
-	TODO: check
+	- tcpdump <unfixed>
+	NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/global-overflow/print-sl
 CVE-2017-11542 (tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print ...)
-	TODO: check
+	- tcpdump <unfixed>
+	NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/heap-buffer-overflow/print-pim
 CVE-2017-11541 (tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print ...)
-	TODO: check
+	- tcpdump <unfixed>
+	NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/heap-buffer-overflow/util-print
 CVE-2017-11540 (When ImageMagick 7.0.6-1 processes a crafted file in convert, it can ...)
 	- imagemagick <unfixed>
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/581




More information about the Secure-testing-commits mailing list