[Secure-testing-commits] r55612 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Sep 9 17:07:37 UTC 2017
Author: carnil
Date: 2017-09-09 17:07:37 +0000 (Sat, 09 Sep 2017)
New Revision: 55612
Modified:
data/CVE/list
Log:
Add upstream bug reference for libbson
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-09 15:36:59 UTC (rev 55611)
+++ data/CVE/list 2017-09-09 17:07:37 UTC (rev 55612)
@@ -16,6 +16,7 @@
NOTE: uncovers the issue, which introduces UTF-8 validation during JSON encoding.
NOTE: Only after that the utf8_len=4294967295 as shown with the POC is passed to
NOTE: bson_utf8_validate via src/bson/bson-iter.c:2069
+ NOTE: https://jira.mongodb.org/browse/CDRIVER-2269
CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...)
- libwpd <unfixed>
NOTE: https://bugs.documentfoundation.org/show_bug.cgi?id=112269
More information about the Secure-testing-commits
mailing list