[Secure-testing-commits] r52710 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jun 19 15:02:31 UTC 2017
Author: carnil
Date: 2017-06-19 15:02:31 +0000 (Mon, 19 Jun 2017)
New Revision: 52710
Modified:
data/CVE/list
Log:
Add new CVEs for qualys issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-19 14:09:11 UTC (rev 52709)
+++ data/CVE/list 2017-06-19 15:02:31 UTC (rev 52710)
@@ -1,3 +1,29 @@
+CVE-2017-1000364
+ - linux <unfixed>
+ NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
+CVE-2017-1000365
+ - linux <unfixed>
+ NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
+CVE-2017-1000366
+ - glibc <unfixed>
+ - eglibc <removed>
+ NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
+CVE-2017-1000369
+ - exim4 <unfixed>
+ NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
+CVE-2017-1000370
+ - linux <unfixed>
+ NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
+CVE-2017-1000371
+ - linux <unfixed>
+ NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
+CVE-2017-1000376
+ - libffi 3.2.1-4
+ NOTE: https://github.com/libffi/libffi/commit/978c9540154d320525488db1b7049277122f736d
+ NOTE: and additionally cf. #751907 for the configure flag.
+ NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
+CVE-2017-1000377
+ NOT-FOR-US: GRSecurity/PAX Linux specific assignment
CVE-2017-9756 (The aarch64_ext_ldst_reglist function in opcodes/aarch64-dis.c in GNU ...)
- binutils <unfixed> (low)
[stretch] - binutils <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list