[Secure-testing-commits] r53859 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Jul 24 14:12:03 UTC 2017 

Author: carnil
Date: 2017-07-24 14:12:03 +0000 (Mon, 24 Jul 2017)
New Revision: 53859

Modified:
   data/CVE/list
Log:
Add fontforge issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-24 13:18:30 UTC (rev 53858)
+++ data/CVE/list	2017-07-24 14:12:03 UTC (rev 53859)
@@ -61,25 +61,35 @@
 CVE-2017-11578
 	RESERVED
 CVE-2017-11577 (FontForge 20161012 is vulnerable to a buffer over-read in getsid ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3088
 CVE-2017-11576 (FontForge 20161012 does not ensure a positive size in a weight vector ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3091
 CVE-2017-11575 (FontForge 20161012 is vulnerable to a buffer over-read in strnmatch ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3096
 CVE-2017-11574 (FontForge 20161012 is vulnerable to a heap-based buffer overflow in ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3090
 CVE-2017-11573 (FontForge 20161012 is vulnerable to a buffer over-read in ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3098
 CVE-2017-11572 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3092
 CVE-2017-11571 (FontForge 20161012 is vulnerable to a stack-based buffer overflow in ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3087
 CVE-2017-11570 (FontForge 20161012 is vulnerable to a buffer over-read in umodenc ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3097
 CVE-2017-11569 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3093
 CVE-2017-11568 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...)
-	TODO: check
+	- fontforge <unfixed>
+	NOTE: https://github.com/fontforge/fontforge/issues/3089
 CVE-2017-11567
 	RESERVED
 CVE-2017-11566

More information about the Secure-testing-commits mailing list