[Secure-testing-commits] r55442 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Sep 4 19:27:59 UTC 2017
Author: carnil
Date: 2017-09-04 19:27:59 +0000 (Mon, 04 Sep 2017)
New Revision: 55442
Modified:
data/CVE/list
Log:
Add fixing commits for tcpdump issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-04 19:12:52 UTC (rev 55441)
+++ data/CVE/list 2017-09-04 19:27:59 UTC (rev 55442)
@@ -6910,12 +6910,15 @@
REJECTED
CVE-2017-11543 (tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in ...)
- tcpdump 4.9.1-3 (bug #873806)
+ NOTE: Fixed by: https://github.com/the-tcpdump-group/tcpdump/commit/7039327875525278d17edee59720e29a3e76b7b3
NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/global-overflow/print-sl
CVE-2017-11542 (tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print ...)
- tcpdump 4.9.1-3 (bug #873805)
+ NOTE: Fixed by: https://github.com/the-tcpdump-group/tcpdump/commit/bed48062a64fca524156d7684af19f5b4a116fae
NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/heap-buffer-overflow/print-pim
CVE-2017-11541 (tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print ...)
- tcpdump 4.9.1-3 (bug #873804)
+ NOTE: Fixed by: https://github.com/the-tcpdump-group/tcpdump/commit/21d702a136c5c16882e368af7c173df728242280
NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/heap-buffer-overflow/util-print
CVE-2017-11540 (When ImageMagick 7.0.6-1 processes a crafted file in convert, it can ...)
- imagemagick <not-affected> (Only affects ImageMagick-7 series)
More information about the Secure-testing-commits
mailing list