[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixed version for r-cran-readxl issues

Salvatore Bonaccorso carnil at debian.org
Fri Apr 13 04:05:32 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1939d1fb by Salvatore Bonaccorso at 2018-04-13T05:05:04+02:00
Add fixed version for r-cran-readxl issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -42273,10 +42273,10 @@ CVE-2017-12113 (An exploitable improper authorization vulnerability exists in ..
 CVE-2017-12112 (An exploitable improper authorization vulnerability exists in ...)
 	- cpp-ethereum <itp> (bug #860434)
 CVE-2017-12111 (An exploitable out-of-bounds vulnerability exists in the xls_addCell ...)
-	- r-cran-readxl <unfixed> (bug #895564)
+	- r-cran-readxl 1.0.0-2 (bug #895564)
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0463
 CVE-2017-12110 (An exploitable integer overflow vulnerability exists in the ...)
-	- r-cran-readxl <unfixed> (bug #895564)
+	- r-cran-readxl 1.0.0-2 (bug #895564)
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0462
 CVE-2017-12109
 	RESERVED
@@ -70839,7 +70839,7 @@ CVE-2017-2921 (An exploitable memory corruption vulnerability exists in the Webs
 CVE-2017-2920 (An memory corruption vulnerability exists in the .SVG parsing ...)
 	NOT-FOR-US: Computerinsel Photoline
 CVE-2017-2919 (An exploitable stack based buffer overflow vulnerability exists in the ...)
-	- r-cran-readxl <unfixed> (bug #895564)
+	- r-cran-readxl 1.0.0-2 (bug #895564)
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0426
 CVE-2017-2918
 	RESERVED
@@ -70885,10 +70885,10 @@ CVE-2017-2899
 CVE-2017-2898 (An exploitable vulnerability exists in the signature verification of ...)
 	NOT-FOR-US: Circle with Disney
 CVE-2017-2897 (An exploitable out-of-bounds write vulnerability exists in the ...)
-	- r-cran-readxl <unfixed> (bug #895564)
+	- r-cran-readxl 1.0.0-2 (bug #895564)
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0404
 CVE-2017-2896 (An exploitable out-of-bounds write vulnerability exists in the ...)
-	- r-cran-readxl <unfixed> (bug #895564)
+	- r-cran-readxl 1.0.0-2 (bug #895564)
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0403
 CVE-2017-2895 (An exploitable arbitrary memory read vulnerability exists in the MQTT ...)
 	NOT-FOR-US: Cesanta Mongoose



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1939d1fb230f57809d20a33ae017be6417729df0

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1939d1fb230f57809d20a33ae017be6417729df0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180413/d5cb6c40/attachment.html>

More information about the debian-security-tracker-commits mailing list