[Secure-testing-commits] r49562 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Mar 10 13:08:56 UTC 2017
Author: carnil
Date: 2017-03-10 13:08:55 +0000 (Fri, 10 Mar 2017)
New Revision: 49562
Modified:
data/CVE/list
Log:
Add commit references for libytnef
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-10 12:01:37 UTC (rev 49561)
+++ data/CVE/list 2017-03-10 13:08:55 UTC (rev 49562)
@@ -1,9 +1,12 @@
CVE-2017-6802 [Potential buffer overrun in compressed RTF streams]
- libytnef 1.9.2-1
+ NOTE: Fixed by: https://github.com/Yeraze/ytnef/commit/22f8346c8d4f0020a40d9f258fdb3bfc097359cc
CVE-2017-6801 [Missing check for fields of size 0]
- libytnef 1.9.2-1
+ NOTE: Fixed by: https://github.com/Yeraze/ytnef/commit/3cb0f914d6427073f262e1b2b5fd973e3043cdf7
CVE-2017-6800 [Invalid memory access (heap overrun) in handling LONG data types]
- libytnef 1.9.2-1
+ NOTE: Fixed by: https://github.com/Yeraze/ytnef/commit/f98f5d4adc1c4bd4033638f6167c1bb95d642f89
CVE-2017-6797 (A cross-site scripting (XSS) vulnerability in ...)
- mantis <removed>
NOTE: https://github.com/mantisbt/mantisbt/commit/a2d90ecabf3bcf3aa22ed9dbbecfd3d37902956f
More information about the Secure-testing-commits
mailing list