[Secure-testing-commits] r50073 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Mar 26 18:59:17 UTC 2017
Author: carnil
Date: 2017-03-26 18:59:17 +0000 (Sun, 26 Mar 2017)
New Revision: 50073
Modified:
data/CVE/list
Log:
Add upstream commits for CVE-2017-6440, CVE-2017-6438 and CVE-2017-6437
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-26 17:47:44 UTC (rev 50072)
+++ data/CVE/list 2017-03-26 18:59:17 UTC (rev 50073)
@@ -2075,6 +2075,7 @@
- libplist <unfixed> (bug #858055)
[jessie] - libplist <no-dsa> (Minor issue)
NOTE: https://github.com/libimobiledevice/libplist/issues/99
+ NOTE: Fixed by: https://github.com/libimobiledevice/libplist/commit/dccd9290745345896e3a4a73154576a599fd8b7b
CVE-2017-6439 (Heap-based buffer overflow in the parse_string_node function in ...)
{DLA-870-1}
- libplist 1.12+git+1+e37ca00-0.1
@@ -2085,10 +2086,12 @@
- libplist <unfixed>
[jessie] - libplist <no-dsa> (Minor issue)
NOTE: https://github.com/libimobiledevice/libplist/issues/98
+ NOTE: Fixed by: https://github.com/libimobiledevice/libplist/commit/dccd9290745345896e3a4a73154576a599fd8b7b
CVE-2017-6437 (The base64encode function in base64.c in libimobiledevice libplist ...)
- libplist <unfixed>
[jessie] - libplist <no-dsa> (Minor issue)
NOTE: https://github.com/libimobiledevice/libplist/issues/100
+ NOTE: Fixed by: https://github.com/libimobiledevice/libplist/commit/dccd9290745345896e3a4a73154576a599fd8b7b
CVE-2017-6436 (The parse_string_node function in bplist.c in libimobiledevice ...)
{DLA-870-1}
- libplist 1.12+git+1+e37ca00-0.1
More information about the Secure-testing-commits
mailing list