[Git][security-tracker-team/security-tracker][master] Track CVE fixes for adns issues in unstable

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cc130226 by Salvatore Bonaccorso at 2020-08-24T07:12:47+02:00
Track CVE fixes for adns issues in unstable

adns/1.6.0-1 was never uploaded so the fist version entering the archive
in unstable was 1.6.0-2.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -195435,31 +195435,31 @@ CVE-2017-9110 (In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode func
 	NOTE: http://www.openwall.com/lists/oss-security/2017/05/12/5
 	NOTE: https://github.com/openexr/openexr/issues/232
 CVE-2017-9109 (An issue was discovered in adns before 1.5.2. It fails to ignore appar ...)
-	- adns <unfixed> (unimportant)
+	- adns 1.6.0-2 (unimportant)
 	NOTE: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git;a=commit;h=fcf2b4e1faf22accb6184cca595aaee602839868
 	NOTE: Stub resolver that should only be used with trusted recursors
 CVE-2017-9108 (An issue was discovered in adns before 1.5.2. adnshost mishandles a mi ...)
-	- adns <unfixed> (unimportant)
+	- adns 1.6.0-2 (unimportant)
 	NOTE: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git;a=commit;h=72c6bfd77dfdb34457a792874fd1c3030fca90ac
 	NOTE: Stub resolver that should only be used with trusted recursors
 CVE-2017-9107 (An issue was discovered in adns before 1.5.2. It overruns reading a bu ...)
-	- adns <unfixed> (unimportant)
+	- adns 1.6.0-2 (unimportant)
 	NOTE: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git;a=commit;h=278f8eee581c4c4a0ddd0f98c4dc8c2974cf6b90
 	NOTE: Stub resolver that should only be used with trusted recursors
 CVE-2017-9106 (An issue was discovered in adns before 1.5.2. adns_rr_info mishandles  ...)
-	- adns <unfixed> (unimportant)
+	- adns 1.6.0-2 (unimportant)
 	NOTE: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git;a=commit;h=37792aacaf7abbcdac6a02715a5ef794b5147f13
 	NOTE: Stub resolver that should only be used with trusted recursors
 CVE-2017-9105 (An issue was discovered in adns before 1.5.2. It corrupts a pointer wh ...)
-	- adns <unfixed> (unimportant)
+	- adns 1.6.0-2 (unimportant)
 	NOTE: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git;a=commit;h=17afb298d90c5aafed76bd3855a5fe7dcd58594c
 	NOTE: Stub resolver that should only be used with trusted recursors
 CVE-2017-9104 (An issue was discovered in adns before 1.5.2. It hangs, eating CPU, if ...)
-	- adns <unfixed> (unimportant)
+	- adns 1.6.0-2 (unimportant)
 	NOTE: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git;a=commit;h=7ba7a232de0516d2cce934bdc91627b33b46ef47
 	NOTE: Stub resolver that should only be used with trusted recursors
 CVE-2017-9103 (An issue was discovered in adns before 1.5.2. pap_mailbox822 does not  ...)
-	- adns <unfixed> (unimportant)
+	- adns 1.6.0-2 (unimportant)
 	NOTE: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git;a=commit;h=020d86e2eccc2dbdfa9dcca08ddb327cc7ca3ae2
 	NOTE: Stub resolver that should only be used with trusted recursors
 CVE-2017-9102



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cc13022663ab67bdbe98851099de3f6299b3ee16

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cc13022663ab67bdbe98851099de3f6299b3ee16
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200824/00a94140/attachment-0001.html>