[Secure-testing-commits] r56582 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Oct 10 20:06:24 UTC 2017


Author: carnil
Date: 2017-10-10 20:06:24 +0000 (Tue, 10 Oct 2017)
New Revision: 56582

Modified:
   data/CVE/list
Log:
CVE-2017-2887/libsdl added

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-10 19:57:33 UTC (rev 56581)
+++ data/CVE/list	2017-10-10 20:06:24 UTC (rev 56582)
@@ -36540,8 +36540,12 @@
 	RESERVED
 CVE-2017-2888
 	RESERVED
-CVE-2017-2887
+CVE-2017-2887 [Simple DirectMedia Layer SDL_image XCF Property Handling Code Execution Vulnerability]
 	RESERVED
+	- libsdl2 <unfixed>
+	- libsdl1.2 <undetermined>
+	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0394
+	NOTE: https://hg.libsdl.org/SDL_image/rev/318484db0705
 CVE-2017-2886
 	RESERVED
 CVE-2017-2885 [stack based buffer overflow with HTTP Chunked Encoding]




More information about the Secure-testing-commits mailing list