[Secure-testing-commits] r58107 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Nov 29 09:46:02 UTC 2017
Author: carnil
Date: 2017-11-29 09:46:02 +0000 (Wed, 29 Nov 2017)
New Revision: 58107
Modified:
data/CVE/list
Log:
Add references to patches for curl issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-29 09:42:39 UTC (rev 58106)
+++ data/CVE/list 2017-11-29 09:46:02 UTC (rev 58107)
@@ -25629,14 +25629,17 @@
[jessie] - curl <not-affected> (Vulnerable code not present)
[wheezy] - curl <not-affected> (Vulnerable code not present)
NOTE: https://curl.haxx.se/docs/adv_2017-af0a.html
+ NOTE: https://curl.haxx.se/CVE-2017-8818.patch
CVE-2017-8817 [FTP wildcard out of bounds read]
RESERVED
- curl <unfixed>
NOTE: https://curl.haxx.se/docs/adv_2017-ae72.html
+ NOTE: https://curl.haxx.se/CVE-2017-8817.patch
CVE-2017-8816 [NTLM buffer overflow via integer overflow]
RESERVED
- curl <unfixed>
NOTE: https://curl.haxx.se/docs/adv_2017-11e7.html
+ NOTE: https://curl.haxx.se/CVE-2017-8816.patch
CVE-2017-8815 (The language converter in MediaWiki before 1.27.4, 1.28.x before ...)
{DSA-4036-1}
- mediawiki 1:1.27.4-1
More information about the Secure-testing-commits
mailing list