[Secure-testing-commits] r56173 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Sep 26 20:40:53 UTC 2017
Author: carnil
Date: 2017-09-26 20:40:53 +0000 (Tue, 26 Sep 2017)
New Revision: 56173
Modified:
data/CVE/list
Log:
Add fix for CVE-2017-11591
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-26 20:36:11 UTC (rev 56172)
+++ data/CVE/list 2017-09-26 20:40:53 UTC (rev 56173)
@@ -8693,6 +8693,7 @@
[jessie] - exiv2 <no-dsa> (Minor issue)
NOTE: https://github.com/Exiv2/exiv2/issues/55
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1473888
+ NOTE: Fixed by: https://github.com/Exiv2/exiv2/commit/8a8f60a4e7089fe7bb597770a2daab24a3941d3e
NOTE: Reproducible in wheezy/jessie/stretch/sid(0.25-3.1)/experimental(0.26-1).
CVE-2017-11590 (There is a NULL pointer dereference in the caseless_hash function in ...)
{DLA-1054-1}
More information about the Secure-testing-commits
mailing list