[Git][security-tracker-team/security-tracker][master] new radare2 issues

Moritz Muehlenhoff jmm at debian.org
Fri Jul 13 16:16:53 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5d979b7c by Moritz Muehlenhoff at 2018-07-13T17:16:26+02:00
new radare2 issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -45,11 +45,20 @@ CVE-2018-14019
 CVE-2018-14018
 	RESERVED
 CVE-2018-14017 (The r_bin_java_annotation_new function in shlr/java/class.c in radare2 ...)
-	TODO: check
+	- radare2 <unfixed>
+	[stretch] - radare2 <no-dsa> (Minor issue)
+	NOTE: https://github.com/radare/radare2/commit/eb0fb72b3c5307ec8e33effb6bf947e38cfdffe8
+	NOTE: https://github.com/radare/radare2/issues/10498
 CVE-2018-14016 (The r_bin_mdmp_init_directory_entry function in mdmp.c in radare2 2.7.0 ...)
-	TODO: check
+	- radare2 <unfixed>
+	[stretch] - radare2 <no-dsa> (Minor issue)
+	NOTE: https://github.com/radare/radare2/commit/40b021ba29c8f90ccf7c879fde2580bc73a17e8e
+	NOTE: https://github.com/radare/radare2/issues/10464
 CVE-2018-14015 (The sdb_set_internal function in sdb.c in radare2 2.7.0 allows remote ...)
-	TODO: check
+	- radare2 <unfixed>
+	[stretch] - radare2 <no-dsa> (Minor issue)
+	NOTE: https://github.com/radare/radare2/commit/bd1bab05083d80464fea854bf4b5c49aaf1b8401
+	NOTE: https://github.com/radare/radare2/issues/10465
 CVE-2018-14014 (In waimai Super Cms 20150505, there is a CSRF vulnerability that can ...)
 	NOT-FOR-US: waimai Super Cms
 CVE-2018-14013



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5d979b7ce7672f40831bf8020de32c7957d2c67a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5d979b7ce7672f40831bf8020de32c7957d2c67a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180713/1c6b6952/attachment.html>

More information about the debian-security-tracker-commits mailing list