[Git][security-tracker-team/security-tracker][master] Three perl issues fixed in unstable

Salvatore Bonaccorso carnil at debian.org
Sat Apr 14 19:45:50 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6e7afde2 by Salvatore Bonaccorso at 2018-04-14T20:45:23+02:00
Three perl issues fixed in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -8226,7 +8226,7 @@ CVE-2017-18175 (Progress Sitefinity 9.1 has XSS via the Content Management Templ
 	NOT-FOR-US: Progress Sitefinity
 CVE-2018-6913 [heap-buffer-overflow in S_pack_rec]
 	RESERVED
-	- perl <unfixed>
+	- perl 5.26.1-6
 	NOTE: https://rt.perl.org/Public/Bug/Display.html?id=131844
 	NOTE: maint-5.26: https://perl5.git.perl.org/perl.git/commitdiff/0fcf83230df5f8c52602ae22fde57c7ea885534d
 	NOTE: maint-5.24: https://perl5.git.perl.org/perl.git/commitdiff/a9d5c6e11891b48be06d4e06eeed18642bc98527
@@ -8501,7 +8501,7 @@ CVE-2018-6799 (The AcquireCacheNexus function in magick/pixel_cache.c in ...)
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/d30ed06e9b87
 CVE-2018-6798 [Heap-buffer-overflow in Perl__byte_dump_string (utf8.c)]
 	RESERVED
-	- perl <unfixed>
+	- perl 5.26.1-6
 	[stretch] - perl 5.24.1-3+deb9u3
 	[jessie] - perl <not-affected> (Issue introduced later)
 	[wheezy] - perl <not-affected> (Issue introduced later)
@@ -8512,7 +8512,7 @@ CVE-2018-6798 [Heap-buffer-overflow in Perl__byte_dump_string (utf8.c)]
 	NOTE: maint-5.24: https://perl5.git.perl.org/perl.git/commitdiff/f65da1ca2eee74696d9c120e9d69af37b4fa1920
 CVE-2018-6797 [heap-buffer-overflow (WRITE of size 1) in S_regatom (regcomp.c)]
 	RESERVED
-	- perl <unfixed>
+	- perl 5.26.1-6
 	[stretch] - perl 5.24.1-3+deb9u3
 	[jessie] - perl <ignored> (Backport of fixes too intrusive and risky for regressions)
 	NOTE: https://rt.perl.org/Public/Bug/Display.html?id=132227



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6e7afde2f7d0db0448d4a75841e24e0e9783588b

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6e7afde2f7d0db0448d4a75841e24e0e9783588b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180414/45520fc1/attachment.html>


More information about the debian-security-tracker-commits mailing list