[Secure-testing-commits] r56530 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sun Oct 8 21:10:13 UTC 2017


Author: sectracker
Date: 2017-10-08 21:10:13 +0000 (Sun, 08 Oct 2017)
New Revision: 56530

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-08 20:27:14 UTC (rev 56529)
+++ data/CVE/list	2017-10-08 21:10:13 UTC (rev 56530)
@@ -118,6 +118,7 @@
 	RESERVED
 CVE-2017-15038 [Qemu: 9p: virtfs: information disclosure when reading extended attributes]
 	RESERVED
+	{DLA-1129-1 DLA-1128-1}
 	- qemu 1:2.10.0+dfsg-2 (bug #877890)
 	[stretch] - qemu <no-dsa> (Minor issue)
 	[jessie] - qemu <no-dsa> (Minor issue)
@@ -1220,9 +1221,11 @@
 CVE-2017-14638 (AP4_AtomFactory::CreateAtomFromStream in Core/Ap4AtomFactory.cpp in ...)
 	NOT-FOR-US: Bento4
 CVE-2017-14637 (In sam2p 0.49.3, there is an invalid read of size 2 in the parse_rgb ...)
+	{DLA-1127-1}
 	- sam2p <removed> (bug #876744)
 	NOTE: https://github.com/pts/sam2p/issues/14 (bug 5)
 CVE-2017-14636 (Because of an integer overflow in sam2p 0.49.3, a loop executes ...)
+	{DLA-1127-1}
 	- sam2p <removed> (bug #876744)
 	NOTE: https://github.com/pts/sam2p/issues/14 (bug 4)
 CVE-2017-14635 (In Open Ticket Request System (OTRS) 3.3.x before 3.3.18, 4.x before ...)
@@ -1258,15 +1261,19 @@
 	NOTE: https://gitlab.xiph.org/xiph/vorbis/issues/2328
 	NOTE: https://github.com/xiph/vorbis/issues/29
 CVE-2017-14631 (In sam2p 0.49.3, the pcxLoadRaster function in in_pcx.cpp has an ...)
+	{DLA-1127-1}
 	- sam2p <removed> (bug #876744)
 	NOTE: https://github.com/pts/sam2p/issues/14 (bug 1)
 CVE-2017-14630 (In sam2p 0.49.3, an integer overflow exists in the pcxLoadImage24 ...)
+	{DLA-1127-1}
 	- sam2p <removed> (bug #876744)
 	NOTE: https://github.com/pts/sam2p/issues/14 (bug 6)
 CVE-2017-14629 (In sam2p 0.49.3, the in_xpm_reader function in in_xpm.cpp has an ...)
+	{DLA-1127-1}
 	- sam2p <removed> (bug #876744)
 	NOTE: https://github.com/pts/sam2p/issues/14 (bug 3)
 CVE-2017-14628 (In sam2p 0.49.3, a heap-based buffer overflow exists in the ...)
+	{DLA-1127-1}
 	- sam2p <removed> (bug #876744)
 	NOTE: https://github.com/pts/sam2p/issues/14 (bug 2)
 CVE-2017-14627 (Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote ...)
@@ -2546,7 +2553,7 @@
 CVE-2017-14168
 	RESERVED
 CVE-2017-14167 (Integer overflow in the load_multiboot function in hw/i386/multiboot.c ...)
-	{DSA-3991-1}
+	{DSA-3991-1 DLA-1129-1 DLA-1128-1}
 	- qemu 1:2.10.0-1 (bug #874606)
 	- qemu-kvm <removed>
 	NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2017-09/msg01483.html




More information about the Secure-testing-commits mailing list