[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add new clamav CVEs
Salvatore Bonaccorso
carnil at debian.org
Fri Jan 26 12:09:07 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3deb7178 by Salvatore Bonaccorso at 2018-01-26T13:08:36+01:00
Add new clamav CVEs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -30558,20 +30558,34 @@ CVE-2017-12382
RESERVED
CVE-2017-12381
RESERVED
-CVE-2017-12380
+CVE-2017-12380 [ClamAV Null Dereference Vulnerability]
RESERVED
-CVE-2017-12379
+ - clamav <unfixed> (bug #888484)
+ NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12379 [ClamAV Buffer Overflow in messageAddArgument Vulnerability]
RESERVED
-CVE-2017-12378
+ - clamav <unfixed> (bug #888484)
+ NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12378 [ClamAV Buffer Over Read Vulnerability]
RESERVED
-CVE-2017-12377
+ - clamav <unfixed> (bug #888484)
+ NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12377 [ClamAV Mew Packet Heap Overflow Vulnerability]
RESERVED
-CVE-2017-12376
+ - clamav <unfixed> (bug #888484)
+ NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12376 [ClamAV Buffer Overflow in handle_pdfname Vulnerability]
RESERVED
-CVE-2017-12375
+ - clamav <unfixed> (bug #888484)
+ NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12375 [ClamAV Buffer Overflow Vulnerability]
RESERVED
-CVE-2017-12374
+ - clamav <unfixed> (bug #888484)
+ NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12374 [ClamAV UAF (use-after-free) Vulnerabilities]
RESERVED
+ - clamav <unfixed> (bug #888484)
+ NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
CVE-2017-12373 (A vulnerability in the TLS protocol implementation of legacy Cisco ASA ...)
NOT-FOR-US: Cisco
CVE-2017-12372 (A "Cisco WebEx Network Recording Player Remote Code Execution ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3deb7178016069acbb41b93dec506c852ad66879
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3deb7178016069acbb41b93dec506c852ad66879
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180126/2e5cfaad/attachment-0001.html>
More information about the Secure-testing-commits
mailing list