[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2017-8786/pcre2 fixed with 10.31-1 upload to unstable
Salvatore Bonaccorso
carnil at debian.org
Sat Feb 24 16:09:02 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
48eed091 by Salvatore Bonaccorso at 2018-02-24T17:07:32+01:00
CVE-2017-8786/pcre2 fixed with 10.31-1 upload to unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -45021,7 +45021,7 @@ CVE-2017-8787 (The PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry functi
NOTE: Possible unspecified impact. Needs further analysis.
NOTE: Upstream commit: https://sourceforge.net/p/podofo/code/1851
CVE-2017-8786 (pcre2test.c in PCRE2 10.23 allows remote attackers to cause a denial of ...)
- - pcre2 <unfixed> (unimportant; bug #861873)
+ - pcre2 10.31-1 (unimportant; bug #861873)
NOTE: https://bugs.exim.org/show_bug.cgi?id=2079
NOTE: https://blogs.gentoo.org/ago/2017/04/29/libpcre-heap-based-buffer-overflow-write-in-pcre2test-c/
NOTE: https://vcs.pcre.org/pcre2/code/trunk/src/pcre2test.c?r1=692&r2=697
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/48eed091e0002448321263bcb0db2daa75cecabd
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/48eed091e0002448321263bcb0db2daa75cecabd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180224/6c2acf34/attachment.html>
More information about the Secure-testing-commits
mailing list