[Secure-testing-commits] r55620 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sun Sep 10 09:10:19 UTC 2017 

Author: sectracker
Date: 2017-09-10 09:10:19 +0000 (Sun, 10 Sep 2017)
New Revision: 55620

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-10 07:30:44 UTC (rev 55619)
+++ data/CVE/list	2017-09-10 09:10:19 UTC (rev 55620)
@@ -1,3 +1,7 @@
+CVE-2017-14231 (GeniXCMS before 1.1.0 allows remote attackers to cause a denial of ...)
+	TODO: check
+CVE-2017-14230 (In the mboxlist_do_find function in imap/mboxlist.c in Cyrus IMAP ...)
+	TODO: check
 CVE-2017-14229 (There is an infinite loop in the jpc_dec_tileinit function in ...)
 	- jasper <removed>
 	[jessie] - jasper <ignored> (Minor issue)
@@ -1351,6 +1355,7 @@
 	[wheezy] - ncurses <ignored> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484274
 CVE-2017-13727 (There is a reachable assertion abort in the function ...)
+	{DLA-1093-1}
 	- tiff 4.0.8-5 (bug #873879)
 	[stretch] - tiff <no-dsa> (Minor issue)
 	[jessie] - tiff <no-dsa> (Minor issue)
@@ -1359,6 +1364,7 @@
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2728
 	NOTE: Fixed by: https://github.com/vadz/libtiff/commit/b6af137bf9ef852f1a48a50a5afb88f9e9da01cc
 CVE-2017-13726 (There is a reachable assertion abort in the function ...)
+	{DLA-1093-1}
 	- tiff 4.0.8-5 (bug #873880)
 	[stretch] - tiff <no-dsa> (Minor issue)
 	[jessie] - tiff <no-dsa> (Minor issue)
@@ -3215,6 +3221,7 @@
 CVE-2017-12945
 	RESERVED
 CVE-2017-12944 (The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 ...)
+	{DLA-1093-1}
 	- tiff <unfixed> (bug #872607)
 	- tiff3 <removed>
 	[wheezy] - tiff3 <not-affected> (Vulnerable code not present)
@@ -8005,6 +8012,7 @@
 	NOTE: Not reproducible in wheezy/jessie/stretch (even with valgrind).
 	NOTE: Reproducible with 0.26-1 (experimental) although I get another error "free(): invalid next size (fast)".
 CVE-2017-11335 (There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF ...)
+	{DLA-1094-1 DLA-1093-1}
 	- tiff 4.0.8-4 (bug #868513)
 	[stretch] - tiff <no-dsa> (Minor issue)
 	[jessie] - tiff <no-dsa> (Minor issue)

More information about the Secure-testing-commits mailing list