[Git][security-tracker-team/security-tracker][master] Add NFUs for Libmobi

Salvatore Bonaccorso carnil at debian.org
Wed May 30 21:14:26 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
46dfd71d by Salvatore Bonaccorso at 2018-05-30T22:13:55+02:00
Add NFUs for Libmobi

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -303,19 +303,19 @@ CVE-2018-11439 (The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in
 	- taglib <unfixed>
 	NOTE: PoC: http://seclists.org/fulldisclosure/2018/May/49
 CVE-2018-11438 (The mobi_decompress_lz77 function in compression.c in Libmobi 0.3 ...)
-	TODO: check
+	NOT-FOR-US: Libmobi
 CVE-2018-11437 (The mobi_reconstruct_parts function in parse_rawml.c in Libmobi 0.3 ...)
-	TODO: check
+	NOT-FOR-US: Libmobi
 CVE-2018-11436 (The buffer_addraw function in buffer.c in Libmobi 0.3 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Libmobi
 CVE-2018-11435 (The mobi_decompress_huffman_internal function in compression.c in ...)
-	TODO: check
+	NOT-FOR-US: Libmobi
 CVE-2018-11434 (The buffer_fill64 function in compression.c in Libmobi 0.3 allows ...)
-	TODO: check
+	NOT-FOR-US: Libmobi
 CVE-2018-11433 (The mobi_get_kf8boundary_seqnumber function in util.c in Libmobi 0.3 ...)
-	TODO: check
+	NOT-FOR-US: Libmobi
 CVE-2018-11432 (The mobi_parse_mobiheader function in read.c in Libmobi 0.3 allows ...)
-	TODO: check
+	NOT-FOR-US: Libmobi
 CVE-2018-11431
 	RESERVED
 CVE-2018-11430 (An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/46dfd71d073b2a9a4c135ac1842037e625031b15

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/46dfd71d073b2a9a4c135ac1842037e625031b15
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180530/514e5a0f/attachment.html>

More information about the debian-security-tracker-commits mailing list