[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-100009{8, 9}/pjproject
Salvatore Bonaccorso
carnil at debian.org
Mon Feb 26 14:05:32 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f3873f02 by Salvatore Bonaccorso at 2018-02-26T15:01:03+01:00
Add CVE-2018-100009{8,9}/pjproject
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -6,12 +6,14 @@ CVE-2018-7482
RESERVED
CVE-2017-18200 (The f2fs implementation in the Linux kernel before 4.14 mishandles ...)
- linux <not-affected> (Vulnerable code not present)
-CVE-2018-XXXX [AST-2018-003: Crash with an invalid SDP fmtp attribute]
+CVE-2018-1000099 [AST-2018-003: Crash with an invalid SDP fmtp attribute]
- pjproject 2.7.2~dfsg-1
NOTE: http://downloads.asterisk.org/pub/security/AST-2018-003.html
-CVE-2018-XXXX [AST-2018-002: Crash when given an invalid SDP media format description]
+ NOTE: https://trac.pjsip.org/repos/ticket/2092
+CVE-2018-1000098 [AST-2018-002: Crash when given an invalid SDP media format description]
- pjproject 2.7.2~dfsg-1
NOTE: http://downloads.asterisk.org/pub/security/AST-2018-002.html
+ NOTE: https://trac.pjsip.org/repos/ticket/2093
CVE-2018-1000101 [Improper null termination in stdio/[v]snprintf.c can result in memory corruption in subsequent string functions]
- mingw-w64 <unfixed>
NOTE: https://sourceforge.net/p/mingw-w64/bugs/709/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3873f02be676bd2155981d1f0ff4d31d71501c0
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3873f02be676bd2155981d1f0ff4d31d71501c0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180226/41a8f572/attachment.html>
More information about the Secure-testing-commits
mailing list