[Git][security-tracker-team/security-tracker][master] Add notes for binaryen issues referencing commits from upstream issues

Salvatore Bonaccorso carnil at debian.org
Tue Jan 29 20:31:47 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9e5de95f by Salvatore Bonaccorso at 2019-01-29T20:31:04Z
Add notes for binaryen issues referencing commits from upstream issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -49,15 +49,26 @@ CVE-2019-7155
 CVE-2019-7154 (The main function in tools/wasm2js.cpp in Binaryen 1.38.22 has a ...)
 	- binaryen <unfixed>
 	NOTE: https://github.com/WebAssembly/binaryen/issues/1876
+	NOTE: https://github.com/WebAssembly/binaryen/commit/79a4fbc80d7ffce4cbcfd04315ce3a0efa88d7fa
 CVE-2019-7153 (A NULL pointer dereference was discovered in ...)
 	- binaryen <unfixed>
 	NOTE: https://github.com/WebAssembly/binaryen/issues/1879
+	NOTE: https://github.com/WebAssembly/binaryen/commit/2127e64f42da55bb5b9b0ab1995b3ca7fc4e0d0b
+	NOTE: https://github.com/WebAssembly/binaryen/commit/85e95e315a8023c46eb804fe80ebc244bcfdae3e
 CVE-2019-7152 (A heap-based buffer over-read was discovered in ...)
 	- binaryen <unfixed>
 	NOTE: https://github.com/WebAssembly/binaryen/issues/1880
+	NOTE: Same set of fixes as for https://github.com/WebAssembly/binaryen/issues/1879
+	NOTE: address the issue.
+	NOTE: https://github.com/WebAssembly/binaryen/commit/2127e64f42da55bb5b9b0ab1995b3ca7fc4e0d0b
+	NOTE: https://github.com/WebAssembly/binaryen/commit/85e95e315a8023c46eb804fe80ebc244bcfdae3e
 CVE-2019-7151 (A NULL pointer dereference was discovered in ...)
 	- binaryen <unfixed>
 	NOTE: https://github.com/WebAssembly/binaryen/issues/1881
+	NOTE: Same set of fixes as for https://github.com/WebAssembly/binaryen/issues/1879
+	NOTE: address the issue.
+	NOTE: https://github.com/WebAssembly/binaryen/commit/2127e64f42da55bb5b9b0ab1995b3ca7fc4e0d0b
+	NOTE: https://github.com/WebAssembly/binaryen/commit/85e95e315a8023c46eb804fe80ebc244bcfdae3e
 CVE-2019-7150 (An issue was discovered in elfutils 0.175. A segmentation fault can ...)
 	- elfutils <unfixed>
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=24103



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9e5de95f9eb697b051aca3553352ee5296095fd4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9e5de95f9eb697b051aca3553352ee5296095fd4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190129/c92b3f73/attachment.html>


More information about the debian-security-tracker-commits mailing list