[Secure-testing-commits] r53879 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jul 25 04:36:49 UTC 2017
Author: carnil
Date: 2017-07-25 04:36:49 +0000 (Tue, 25 Jul 2017)
New Revision: 53879
Modified:
data/CVE/list
Log:
Mark libsass issues as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-25 04:29:54 UTC (rev 53878)
+++ data/CVE/list 2017-07-25 04:36:49 UTC (rev 53879)
@@ -6,6 +6,7 @@
RESERVED
CVE-2017-11608 (There is a heap-based buffer over-read in the ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1474276
CVE-2017-11607
RESERVED
@@ -13,6 +14,7 @@
RESERVED
CVE-2017-11605 (There is a heap based buffer over-read in LibSass 3.4.5, related to ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1474019
CVE-2017-11604
RESERVED
@@ -130,12 +132,15 @@
RESERVED
CVE-2017-11556 (There is a stack consumption vulnerability in the ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2447
CVE-2017-11555 (There is an illegal address access in the Eval::operator function in ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2446
CVE-2017-11554 (There is a stack consumption vulnerability in the lex function in ...)
- libsass <unfixed>
+ [stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2445
CVE-2017-11553 (There is an illegal address access in the extend_alias_table function ...)
- exiv2 <unfixed>
More information about the Secure-testing-commits
mailing list