[Git][security-tracker-team/security-tracker][master] Add three new liblouis CVEs

Mon Jun 4 09:15:02 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e8d1c82d by Salvatore Bonaccorso at 2018-06-04T10:14:40+02:00
Add three new liblouis CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -43,11 +43,20 @@ CVE-2018-11687
 CVE-2018-11686
 	RESERVED
 CVE-2018-11685 (Liblouis 3.5.0 has a stack-based Buffer Overflow in the function ...)
-	TODO: check
+	- liblouis <unfixed>
+	[stretch] - liblouis <no-dsa> (Minor issue)
+	[jessie] - liblouis <no-dsa> (Minor issue)
+	NOTE: https://github.com/liblouis/liblouis/issues/593
 CVE-2018-11684 (Liblouis 3.5.0 has a stack-based Buffer Overflow in the function ...)
-	TODO: check
+	- liblouis <unfixed>
+	[stretch] - liblouis <no-dsa> (Minor issue)
+	[jessie] - liblouis <no-dsa> (Minor issue)
+	NOTE: https://github.com/liblouis/liblouis/issues/592
 CVE-2018-11683 (Liblouis 3.5.0 has a stack-based Buffer Overflow in the function ...)
-	TODO: check
+	- liblouis <unfixed>
+	[stretch] - liblouis <no-dsa> (Minor issue)
+	[jessie] - liblouis <no-dsa> (Minor issue)
+	NOTE: https://github.com/liblouis/liblouis/issues/591
 CVE-2017-18285 (The Gentoo app-backup/burp package before 2.1.32 has incorrect group ...)
 	TODO: check
 CVE-2017-18284 (The Gentoo app-backup/burp package before 2.1.32 sets the ownership of ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e8d1c82d0a7e83c5cb5219cc018bbefe9ce9c158

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e8d1c82d0a7e83c5cb5219cc018bbefe9ce9c158
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180604/3df6277a/attachment.html>
