[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2017-17484: Reference the fixed POC from gcs
Salvatore Bonaccorso
carnil at debian.org
Tue Jan 2 19:42:17 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
db422848 by Salvatore Bonaccorso at 2018-01-02T20:40:54+01:00
CVE-2017-17484: Reference the fixed POC from gcs
Laszlo Boszormenyi fixed the POC for CVE-2017-17484. Reference this one
instead of the original one which was broken.
Cf. https://ssl.icu-project.org/trac/ticket/13490#comment:6
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -6514,7 +6514,7 @@ CVE-2017-17484 (The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp in International .
NOTE: https://ssl.icu-project.org/trac/ticket/13490
NOTE: Fixed by: https://ssl.icu-project.org/trac/changeset/40714
NOTE: Testcase: https://ssl.icu-project.org/trac/changeset/40715
- NOTE: POC: https://ssl.icu-project.org/trac/attachment/ticket/13490/poc.cpp
+ NOTE: POC: https://ssl.icu-project.org/trac/attachment/ticket/13490/poc.2.cpp
NOTE: Likely introduced by: https://ssl.icu-project.org/trac/changeset/40455/trunk/icu4c/source/common/ucnv_u8.cpp
CVE-2017-17483
RESERVED
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/db422848c84d78436279e635fb96618203e9b809
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/db422848c84d78436279e635fb96618203e9b809
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180102/bc2f976c/attachment-0001.html>
More information about the Secure-testing-commits
mailing list