[Secure-testing-commits] r49359 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Mar 2 10:09:11 UTC 2017
Author: jmm
Date: 2017-03-02 10:09:11 +0000 (Thu, 02 Mar 2017)
New Revision: 49359
Modified:
data/CVE/list
Log:
new radare2 issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-02 09:23:25 UTC (rev 49358)
+++ data/CVE/list 2017-03-02 10:09:11 UTC (rev 49359)
@@ -99,7 +99,7 @@
CVE-2017-6416
RESERVED
CVE-2017-6415 (The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 ...)
- TODO: check
+ - radere2 <unfixed>
CVE-2017-6414 [libcacard: host memory leakage while creating new APDU]
RESERVED
- libcacard <unfixed> (bug #856501)
@@ -159,7 +159,7 @@
CVE-2017-6388
RESERVED
CVE-2017-6387 (The dex_loadcode function in libr/bin/p/bin_dex.c in radare2 1.2.1 ...)
- TODO: check
+ - radere2 <unfixed>
CVE-2017-6386 [memory leakage while in vrend_create_vertex_elements_state]
RESERVED
- virglrenderer <unfixed>
@@ -28944,7 +28944,7 @@
{DSA-3652-1 DLA-731-1}
- imagemagick 8:6.9.6.2+dfsg-2 (bug #832890)
NOTE: https://blog.fuzzing-project.org/46-Various-invalid-memory-reads-in-ImageMagick-WPG,-DDS,-DCM.html
- TODO: check, referenced fix does not seem the one fixing the issue
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/0b7172f2ba2c9e664d4df148e7d6e14a50edb57a
CVE-2016-5699 (CRLF injection vulnerability in the HTTPConnection.putheader function ...)
{DLA-522-1}
- python3.5 <not-affected> (Fixed with initial upload to Debian)
More information about the Secure-testing-commits
mailing list