[Secure-testing-commits] r56216 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Sep 28 11:28:38 UTC 2017
Author: carnil
Date: 2017-09-28 11:28:38 +0000 (Thu, 28 Sep 2017)
New Revision: 56216
Modified:
data/CVE/list
Log:
Add new openvpn issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-28 11:23:16 UTC (rev 56215)
+++ data/CVE/list 2017-09-28 11:28:38 UTC (rev 56216)
@@ -7423,8 +7423,15 @@
CVE-2017-12167
RESERVED
TODO: check, possibly Red Hat specific issue
-CVE-2017-12166
+CVE-2017-12166 [remote buffer overflow]
RESERVED
+ - openvpn <unfixed>
+ NOTE: https://community.openvpn.net/openvpn/wiki/CVE-2017-12166
+ NOTE: http://www.openwall.com/lists/oss-security/2017/09/28/2
+ NOTE: https://community.openvpn.net/openvpn/changeset/3b1a61e9fb27213c46f76312f4065816bee8ed01/ (master)
+ NOTE: https://community.openvpn.net/openvpn/changeset/c7e259160b28e94e4ea7f0ef767f8134283af255/ (release/2.4)
+ NOTE: https://community.openvpn.net/openvpn/changeset/fce34375295151f548a26c2d0eb30141e427c81a/ (release/2.3)
+ NOTE: https://community.openvpn.net/openvpn/changeset/a9f5c744d6b09f2495ca48d2c926efd3a4b981e6/ (release/2.2)
CVE-2017-12165
RESERVED
CVE-2017-12164 [lock screen can be circumvented when autologin is set]
More information about the Secure-testing-commits
mailing list