[Secure-testing-commits] r56038 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Sep 23 06:46:17 UTC 2017
Author: carnil
Date: 2017-09-23 06:46:16 +0000 (Sat, 23 Sep 2017)
New Revision: 56038
Modified:
data/CVE/list
Log:
Add information for CVE-2017-14266
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-23 00:38:15 UTC (rev 56037)
+++ data/CVE/list 2017-09-23 06:46:16 UTC (rev 56038)
@@ -1158,7 +1158,12 @@
NOT-FOR-US: EE 4GEE WiFi MBB
CVE-2017-14266 (tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow ...)
- tcpreplay 3.4.4-3
+ [jessie] - tcpreplay 3.4.4-2+deb8u1
+ [wheezy] - tcpreplay 3.4.3-2+wheezy2
NOTE: Fixed by http://launchpadlibrarian.net/270778908/tcpreplay_3.4.4-2_3.4.4-3.diff.gz
+ NOTE: Possibly a duplicate of CVE-2016-6160 depending on MITRE classification for the
+ NOTE: two vulnerabilities.
+ NOTE: Patch enforce-maxpacket.patch addresses the issue
CVE-2017-14265 (A Stack-based Buffer Overflow was discovered in xtrans_interpolate in ...)
- libraw <unfixed>
NOTE: https://github.com/LibRaw/LibRaw/issues/99
More information about the Secure-testing-commits
mailing list