[Secure-testing-commits] r56427 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Oct 5 11:44:10 UTC 2017
Author: carnil
Date: 2017-10-05 11:44:09 +0000 (Thu, 05 Oct 2017)
New Revision: 56427
Modified:
data/CVE/list
Log:
Eight fontforge issues fixed in unstable
The remaining two are not yet addressed.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-05 10:31:07 UTC (rev 56426)
+++ data/CVE/list 2017-10-05 11:44:09 UTC (rev 56427)
@@ -9648,22 +9648,22 @@
RESERVED
CVE-2017-11577 (FontForge 20161012 is vulnerable to a buffer over-read in getsid ...)
{DSA-3958-1 DLA-1065-1}
- - fontforge <unfixed> (bug #869614)
+ - fontforge 1:20170731~dfsg-1 (bug #869614)
NOTE: https://github.com/fontforge/fontforge/issues/3088
NOTE: https://github.com/fontforge/fontforge/commit/3245d354865def9d712bdffe61fa211ad6aa4081
CVE-2017-11576 (FontForge 20161012 does not ensure a positive size in a weight vector ...)
{DSA-3958-1 DLA-1065-1}
- - fontforge <unfixed> (bug #869614)
+ - fontforge 1:20170731~dfsg-1 (bug #869614)
NOTE: https://github.com/fontforge/fontforge/issues/3091
NOTE: https://github.com/fontforge/fontforge/commit/df349365630344ef3004a3c7934c7e7496692fb1
CVE-2017-11575 (FontForge 20161012 is vulnerable to a buffer over-read in strnmatch ...)
{DSA-3958-1 DLA-1065-1}
- - fontforge <unfixed> (bug #869614)
+ - fontforge 1:20170731~dfsg-1 (bug #869614)
NOTE: https://github.com/fontforge/fontforge/issues/3096
NOTE: https://github.com/fontforge/fontforge/commit/4de0c58a01e5e30610c200e9aea98bc7db12c7ac
CVE-2017-11574 (FontForge 20161012 is vulnerable to a heap-based buffer overflow in ...)
{DSA-3958-1 DLA-1065-1}
- - fontforge <unfixed> (bug #869614)
+ - fontforge 1:20170731~dfsg-1 (bug #869614)
NOTE: https://github.com/fontforge/fontforge/issues/3090
NOTE: https://github.com/fontforge/fontforge/commit/62b6433a81ee7ed6e0ac2d6b09ac85b885046ac3
CVE-2017-11573 (FontForge 20161012 is vulnerable to a buffer over-read in ...)
@@ -9674,11 +9674,11 @@
NOTE: https://github.com/fontforge/fontforge/issues/3098
CVE-2017-11572 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...)
{DSA-3958-1 DLA-1065-1}
- - fontforge <unfixed> (bug #869614)
+ - fontforge 1:20170731~dfsg-1 (bug #869614)
NOTE: https://github.com/fontforge/fontforge/issues/3092
CVE-2017-11571 (FontForge 20161012 is vulnerable to a stack-based buffer overflow in ...)
{DSA-3958-1 DLA-1065-1}
- - fontforge <unfixed> (bug #869614)
+ - fontforge 1:20170731~dfsg-1 (bug #869614)
NOTE: https://github.com/fontforge/fontforge/issues/3087
NOTE: https://github.com/fontforge/fontforge/commit/5a0c6522682b0788fc478dd159dd6168cb5fa38b
CVE-2017-11570 (FontForge 20161012 is vulnerable to a buffer over-read in umodenc ...)
@@ -9689,12 +9689,12 @@
NOTE: https://github.com/fontforge/fontforge/issues/3097
CVE-2017-11569 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...)
{DSA-3958-1 DLA-1065-1}
- - fontforge <unfixed> (bug #869614)
+ - fontforge 1:20170731~dfsg-1 (bug #869614)
NOTE: https://github.com/fontforge/fontforge/issues/3093
NOTE: https://github.com/fontforge/fontforge/commit/7bfec47910293bf149b8debe44c6f3f788506092
CVE-2017-11568 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...)
{DSA-3958-1 DLA-1065-1}
- - fontforge <unfixed> (bug #869614)
+ - fontforge 1:20170731~dfsg-1 (bug #869614)
NOTE: https://github.com/fontforge/fontforge/issues/3089
CVE-2017-11567 (Cross-site request forgery (CSRF) vulnerability in Mongoose Web Server ...)
NOT-FOR-US: Mongoose
More information about the Secure-testing-commits
mailing list