[Secure-testing-commits] r58050 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Nov 27 17:54:21 UTC 2017
Author: carnil
Date: 2017-11-27 17:54:20 +0000 (Mon, 27 Nov 2017)
New Revision: 58050
Modified:
data/CVE/list
Log:
Add CVE-2017-15094/pdns-recursor
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-27 17:34:28 UTC (rev 58049)
+++ data/CVE/list 2017-11-27 17:54:20 UTC (rev 58050)
@@ -6293,8 +6293,13 @@
NOTE: NO_DESER_CLASS_NAMES as of:
NOTE: https://github.com/FasterXML/jackson-databind/blob/7093008aa2afe8068e120df850189ae072dfa1b2/src/main/java/com/fasterxml/jackson/databind/deser/BeanDeserializerFactory.java#L43
NOTE: Details: http://www.openwall.com/lists/oss-security/2017/11/02/3
-CVE-2017-15094
+CVE-2017-15094 [Memory leak in DNSSEC parsing]
RESERVED
+ - pdns-recursor <unfixed>
+ [stretch] - pdns-recursor <no-dsa> (Minor issue)
+ [jessie] - pdns-recursor <not-affected> (Issue introduced in 4.0.0)
+ [wheezy] - pdns-recursor <not-affected> (Issue introduced in 4.0.0)
+ NOTE: https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2017-07.html
CVE-2017-15093
RESERVED
CVE-2017-15092
More information about the Secure-testing-commits
mailing list