[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-1000422/gdk-pixbuf
Salvatore Bonaccorso
carnil at debian.org
Wed Jan 3 05:53:35 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c825e101 by Salvatore Bonaccorso at 2018-01-03T06:53:07+01:00
Add CVE-2017-1000422/gdk-pixbuf
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -41,7 +41,8 @@ CVE-2017-1000424 (Github Electron version 1.6.4 - 1.6.11 and 1.7.0 - 1.7.5 is vu
CVE-2017-1000423 (b2evolution version 6.6.0 - 6.8.10 is vulnerable to input validation ...)
TODO: check
CVE-2017-1000422 (Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer ...)
- TODO: check
+ - gdk-pixbuf <unfixed>
+ NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=785973
CVE-2017-1000421 (Gifsicle gifview 1.89 and older is vulnerable to a use-after-free in ...)
TODO: check
CVE-2017-1000420 (Syncthing version 0.14.33 and older is vulnerable to symlink traversal ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c825e101a57a1d2c8e2ac6c59c8227092792ba9c
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c825e101a57a1d2c8e2ac6c59c8227092792ba9c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180103/6f1a9a81/attachment.html>
More information about the Secure-testing-commits
mailing list