[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-6764/libvirt
Salvatore Bonaccorso
carnil at debian.org
Wed Feb 7 07:08:23 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7039af03 by Salvatore Bonaccorso at 2018-02-07T08:07:41+01:00
Add CVE-2018-6764/libvirt
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2,6 +2,10 @@ CVE-2018-6767 [wavpack: stack buffer overflow via crafted wav file]
- wavpack <unfixed> (bug #889276)
NOTE: https://github.com/dbry/WavPack/issues/27
NOTE: https://github.com/dbry/WavPack/commit/d5bf76b5a88d044a1be1d5656698e3ba737167e5
+CVE-2018-6764 [guest could inject executable code via libnss_dns.so loaded by libvirt_lxc before init]
+ - libvirt <undetermined>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1541444
+ TODO: check, Red Hat does not provide much references
CVE-2018-6759 (The bfd_get_debug_link_info_1 function in opncls.c in the Binary File ...)
- binutils <unfixed>
[stretch] - binutils <ignored> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7039af0318bdf69b9f4d62d9ec07a304af9d1abd
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7039af0318bdf69b9f4d62d9ec07a304af9d1abd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180207/e7930538/attachment.html>
More information about the Secure-testing-commits
mailing list