[Secure-testing-commits] r55618 - data
Author: roberto Date: 2017-09-10 00:29:07 + (Sun, 10 Sep 2017) New Revision: 55618 Modified: data/dla-needed.txt Log: Claim imagemagick in dla-needed.txt Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-09-10 00:28:22 UTC (rev 55617) +++ data/dla-needed.txt 2017-09-10 00:29:07 UTC (rev 55618) @@ -63,7 +63,7 @@ -- graphicsmagick (Brian May) -- -imagemagick +imagemagick (Roberto C. Sánchez) -- jasper NOTE: 20170629, no patch available for the remaining CVEs yet, pinged upstream ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55617 - in data: . DLA
Author: roberto
Date: 2017-09-10 00:28:22 + (Sun, 10 Sep 2017)
New Revision: 55617
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-1093-1 for tiff and DLA-1094-1 for tiff3
Modified: data/DLA/list
===
--- data/DLA/list 2017-09-09 23:07:55 UTC (rev 55616)
+++ data/DLA/list 2017-09-10 00:28:22 UTC (rev 55617)
@@ -1,3 +1,9 @@
+[09 Sep 2017] DLA-1094-1 tiff3 - security update
+ {CVE-2017-11335}
+ [wheezy] - tiff3 3.9.6-11+deb7u8
+[09 Sep 2017] DLA-1093-1 tiff - security update
+ {CVE-2017-11335 CVE-2017-12944 CVE-2017-13726 CVE-2017-13727}
+ [wheezy] - tiff 4.0.2-6+deb7u16
[08 Sep 2017] DLA-1092-1 libarchive - security update
{CVE-2017-14166}
[wheezy] - libarchive 3.0.4-3+wheezy6+deb7u1
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-09-09 23:07:55 UTC (rev 55616)
+++ data/dla-needed.txt 2017-09-10 00:28:22 UTC (rev 55617)
@@ -179,9 +179,9 @@
tcpdump
NOTE: The whole upstream version shall be ported to wheezy.
--
-tiff (Roberto C. Sánchez)
+tiff
--
-tiff3 (Roberto C. Sánchez)
+tiff3
--
wireshark
NOTE: 2017-08-28: Contacted maintainer since most NOTE: issues affect
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55616 - data/CVE
Author: roberto Date: 2017-09-09 23:07:55 + (Sat, 09 Sep 2017) New Revision: 55616 Modified: data/CVE/list Log: Note that CVE-2017-12944 does not affect tiff3 in wheezy Modified: data/CVE/list === --- data/CVE/list 2017-09-09 22:51:07 UTC (rev 55615) +++ data/CVE/list 2017-09-09 23:07:55 UTC (rev 55616) @@ -3216,6 +3216,7 @@ CVE-2017-12944 (The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 ...) - tiff (bug #872607) - tiff3 + [wheezy] - tiff3 (Vulnerable code not present) NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2725 NOTE: Fixed by: https://github.com/vadz/libtiff/commit/dc02f9050311a90b3c0655147cee09bfa7081cfc CVE-2017-12943 (D-Link DIR-600 Rev Bx devices with v2.x firmware allow remote attackers ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55615 - data/CVE
Author: roberto Date: 2017-09-09 22:51:07 + (Sat, 09 Sep 2017) New Revision: 55615 Modified: data/CVE/list Log: Note that CVE-2017-13726 and CVE-2017-13727 do not affect tiff3 in wheezy Modified: data/CVE/list === --- data/CVE/list 2017-09-09 21:44:39 UTC (rev 55614) +++ data/CVE/list 2017-09-09 22:51:07 UTC (rev 55615) @@ -1354,6 +1354,7 @@ [stretch] - tiff (Minor issue) [jessie] - tiff (Minor issue) - tiff3 + [wheezy] - tiff3 (Vulnerable code not present) NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2728 NOTE: Fixed by: https://github.com/vadz/libtiff/commit/b6af137bf9ef852f1a48a50a5afb88f9e9da01cc CVE-2017-13726 (There is a reachable assertion abort in the function ...) @@ -1361,6 +1362,7 @@ [stretch] - tiff (Minor issue) [jessie] - tiff (Minor issue) - tiff3 + [wheezy] - tiff3 (Vulnerable code not present) NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2727 NOTE: Fixed by: https://github.com/vadz/libtiff/commit/f91ca83a21a6a583050e5a5755ce1441b2bf1d7e CVE-2017-13725 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55614 - data/CVE
Author: jmm Date: 2017-09-09 21:44:39 + (Sat, 09 Sep 2017) New Revision: 55614 Modified: data/CVE/list Log: ffmpeg postponed Modified: data/CVE/list === --- data/CVE/list 2017-09-09 17:11:27 UTC (rev 55613) +++ data/CVE/list 2017-09-09 21:44:39 UTC (rev 55614) @@ -25,7 +25,9 @@ NOTE: https://sourceforge.net/p/libwpd/code/ci/0329a9c57f9b3b0efa0f09a5235dfd90236803a5/ NOTE: https://sourceforge.net/p/libwpd/code/ci/f40827b3eae260ce657c67d9fecc855b09dea3c3/ CVE-2017-14225 (The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg ...) - - ffmpeg + - ffmpeg (low) + [stretch] - ffmpeg (Can be fixed along when more severe issues are being fixed) + - libav NOTE: https://github.com/FFmpeg/FFmpeg/commit/837cb4325b712ff1aab531bf41668933f61d75d2 CVE-2017-14224 (A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ...) - imagemagick @@ -33,10 +35,14 @@ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/7f2d6fe34d695d3445e2d50937db5541a1b76bde NOTE: https://github.com/ImageMagick/ImageMagick/commit/c6409227c430f114b6425337e64b848535b62e0b CVE-2017-14223 (In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in ...) - - ffmpeg + - ffmpeg (low) + [stretch] - ffmpeg (Can be fixed along when more severe issues are being fixed) + - libav NOTE: https://github.com/FFmpeg/FFmpeg/commit/afc9c683ed9db01edb357bc8c19edad4282b3a97 CVE-2017-14222 (In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack ...) - - ffmpeg + - ffmpeg (low) + [stretch] - ffmpeg (Can be fixed along when more severe issues are being fixed) + - libav NOTE: https://github.com/FFmpeg/FFmpeg/commit/9cb4eb772839c5e1de2855d126bf74ff16d13382 CVE-2017-14221 RESERVED @@ -146,13 +152,19 @@ NOTE: https://github.com/ImageMagick/ImageMagick/issues/715 NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/8598a497e2d1f556a34458cf54b40ba40674734c CVE-2017-14171 (In libavformat/nsvdec.c in FFmpeg 3.3.3, a DoS in ...) - - ffmpeg + - ffmpeg (low) + [stretch] - ffmpeg (Can be fixed along when more severe issues are being fixed) + - libav NOTE: https://github.com/FFmpeg/FFmpeg/commit/c24bcb553650b91e9eff15ef6e54ca73de2453b7 CVE-2017-14170 (In libavformat/mxfdec.c in FFmpeg 3.3.3, a DoS in ...) - - ffmpeg + - ffmpeg (low) + [stretch] - ffmpeg (Can be fixed along when more severe issues are being fixed) + - libav NOTE: https://github.com/FFmpeg/FFmpeg/commit/900f39692ca0337a98a7cf047e4e2611071810c2 CVE-2017-14169 (In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg ...) - - ffmpeg + - ffmpeg (low) + [stretch] - ffmpeg (Can be fixed along when more severe issues are being fixed) + - libav NOTE: https://github.com/FFmpeg/FFmpeg/commit/9d00fb9d70ee8c0cc7002b89318c5be00f1bbdad CVE-2017-14168 RESERVED ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55613 - data/CVE
Author: carnil Date: 2017-09-09 17:11:27 + (Sat, 09 Sep 2017) New Revision: 55613 Modified: data/CVE/list Log: Add more details for CVE-2017-14227 Modified: data/CVE/list === --- data/CVE/list 2017-09-09 17:07:37 UTC (rev 55612) +++ data/CVE/list 2017-09-09 17:11:27 UTC (rev 55613) @@ -16,7 +16,9 @@ NOTE: uncovers the issue, which introduces UTF-8 validation during JSON encoding. NOTE: Only after that the utf8_len=4294967295 as shown with the POC is passed to NOTE: bson_utf8_validate via src/bson/bson-iter.c:2069 - NOTE: https://jira.mongodb.org/browse/CDRIVER-2269 + NOTE: Still the underlying issue in bson-iter.c when parsing BSON with a codewscope + NOTE: type is present in earlier versions. + NOTE: Upstream issue: https://jira.mongodb.org/browse/CDRIVER-2269 CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...) - libwpd NOTE: https://bugs.documentfoundation.org/show_bug.cgi?id=112269 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55612 - data/CVE
Author: carnil Date: 2017-09-09 17:07:37 + (Sat, 09 Sep 2017) New Revision: 55612 Modified: data/CVE/list Log: Add upstream bug reference for libbson Modified: data/CVE/list === --- data/CVE/list 2017-09-09 15:36:59 UTC (rev 55611) +++ data/CVE/list 2017-09-09 17:07:37 UTC (rev 55612) @@ -16,6 +16,7 @@ NOTE: uncovers the issue, which introduces UTF-8 validation during JSON encoding. NOTE: Only after that the utf8_len=4294967295 as shown with the POC is passed to NOTE: bson_utf8_validate via src/bson/bson-iter.c:2069 + NOTE: https://jira.mongodb.org/browse/CDRIVER-2269 CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...) - libwpd NOTE: https://bugs.documentfoundation.org/show_bug.cgi?id=112269 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55611 - data/CVE
Author: carnil Date: 2017-09-09 15:36:59 + (Sat, 09 Sep 2017) New Revision: 55611 Modified: data/CVE/list Log: Clarify libbson notes Modified: data/CVE/list === --- data/CVE/list 2017-09-09 15:20:15 UTC (rev 55610) +++ data/CVE/list 2017-09-09 15:36:59 UTC (rev 55611) @@ -12,10 +12,10 @@ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489355 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489356 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489362 - NOTE: Issue possibly introduced only with https://github.com/mongodb/libbson/commit/0f501e7ed51a42d5502d319bce35b41f1a3aa112 (1.7.0-rc0) - NOTE: which introduces UTF-8 validation during JSON encoding. - NOTE: Only after that the utf8_len=4294967295 as shown with the POC - NOTE: is passed to bson_utf8_validate via src/bson/bson-iter.c:2069 + NOTE: Latest https://github.com/mongodb/libbson/commit/0f501e7ed51a42d5502d319bce35b41f1a3aa112 (1.7.0-rc0) + NOTE: uncovers the issue, which introduces UTF-8 validation during JSON encoding. + NOTE: Only after that the utf8_len=4294967295 as shown with the POC is passed to + NOTE: bson_utf8_validate via src/bson/bson-iter.c:2069 CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...) - libwpd NOTE: https://bugs.documentfoundation.org/show_bug.cgi?id=112269 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55610 - data/CVE
Author: carnil Date: 2017-09-09 15:20:15 + (Sat, 09 Sep 2017) New Revision: 55610 Modified: data/CVE/list Log: Add note for CVE-2017-14227 Modified: data/CVE/list === --- data/CVE/list 2017-09-09 14:58:57 UTC (rev 55609) +++ data/CVE/list 2017-09-09 15:20:15 UTC (rev 55610) @@ -12,6 +12,10 @@ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489355 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489356 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489362 + NOTE: Issue possibly introduced only with https://github.com/mongodb/libbson/commit/0f501e7ed51a42d5502d319bce35b41f1a3aa112 (1.7.0-rc0) + NOTE: which introduces UTF-8 validation during JSON encoding. + NOTE: Only after that the utf8_len=4294967295 as shown with the POC + NOTE: is passed to bson_utf8_validate via src/bson/bson-iter.c:2069 CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...) - libwpd NOTE: https://bugs.documentfoundation.org/show_bug.cgi?id=112269 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55609 - data/CVE
Author: gcs
Date: 2017-09-09 14:58:57 + (Sat, 09 Sep 2017)
New Revision: 55609
Modified:
data/CVE/list
Log:
Add CVE-2017-14{042,165}/graphicsmagick fixed version in unstable
Modified: data/CVE/list
===
--- data/CVE/list 2017-09-09 14:55:40 UTC (rev 55608)
+++ data/CVE/list 2017-09-09 14:58:57 UTC (rev 55609)
@@ -169,7 +169,7 @@
NOTE:
https://github.com/libarchive/libarchive/commit/fa7438a0ff4033e4741c807394a9af6207940d71
NOTE: https://github.com/libarchive/libarchive/issues/935
CVE-2017-14165 (The ReadSUNImage function in coders/sun.c in GraphicsMagick
1.3.26 has ...)
- - graphicsmagick (unimportant; bug #874724)
+ - graphicsmagick 1.3.26-9 (unimportant; bug #874724)
NOTE: Fixed by:
http://hg.code.sf.net/p/graphicsmagick/code/rev/493da54370aa
NOTE: http://www.openwall.com/lists/oss-security/2017/09/06/4
NOTE: https://sourceforge.net/p/graphicsmagick/bugs/442/
@@ -1414,7 +1414,7 @@
NOTE: https://github.com/uclouvain/openjpeg/issues/992
NOTE: The issue is covered by
https://github.com/uclouvain/openjpeg/commit/4241ae6fbbf1de9658764a80944dc8108f2b4154
CVE-2017-14042 (A memory allocation failure was discovered in the ReadPNMImage
function ...)
- - graphicsmagick (unimportant; bug #873538)
+ - graphicsmagick 1.3.26-9 (unimportant; bug #873538)
NOTE: Fixed by:
http://hg.code.sf.net/p/graphicsmagick/code/rev/3bbf7a13643d
NOTE:
https://blogs.gentoo.org/ago/2017/08/28/graphicsmagick-memory-allocation-failure-in-magickrealloc-memory-c-2/
NOTE: https://sourceforge.net/p/graphicsmagick/bugs/441/
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55608 - data/CVE
Author: carnil Date: 2017-09-09 14:55:40 + (Sat, 09 Sep 2017) New Revision: 55608 Modified: data/CVE/list Log: Add bug reference for libbson issue Modified: data/CVE/list === --- data/CVE/list 2017-09-09 12:12:42 UTC (rev 55607) +++ data/CVE/list 2017-09-09 14:55:40 UTC (rev 55608) @@ -8,7 +8,7 @@ [jessie] - nasm (Minor issue) NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392423 CVE-2017-14227 (In MongoDB libbson 1.7.0, the bson_iter_codewscope function in ...) - - libbson + - libbson (bug #874754) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489355 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489356 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489362 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55607 - data/CVE
Author: carnil Date: 2017-09-09 12:12:42 + (Sat, 09 Sep 2017) New Revision: 55607 Modified: data/CVE/list Log: Add bug reference for CVE-2017-14228 Modified: data/CVE/list === --- data/CVE/list 2017-09-09 12:02:58 UTC (rev 55606) +++ data/CVE/list 2017-09-09 12:12:42 UTC (rev 55607) @@ -3,7 +3,7 @@ [jessie] - jasper (Minor issue) NOTE: https://github.com/mdadams/jasper/issues/146 CVE-2017-14228 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) - - nasm + - nasm (bug #874731) [stretch] - nasm (Minor issue) [jessie] - nasm (Minor issue) NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392423 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55606 - data/CVE
Author: carnil Date: 2017-09-09 12:02:58 + (Sat, 09 Sep 2017) New Revision: 55606 Modified: data/CVE/list Log: Mark nasm issue as no-dsa Modified: data/CVE/list === --- data/CVE/list 2017-09-09 10:13:47 UTC (rev 55605) +++ data/CVE/list 2017-09-09 12:02:58 UTC (rev 55606) @@ -4,6 +4,8 @@ NOTE: https://github.com/mdadams/jasper/issues/146 CVE-2017-14228 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) - nasm + [stretch] - nasm (Minor issue) + [jessie] - nasm (Minor issue) NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392423 CVE-2017-14227 (In MongoDB libbson 1.7.0, the bson_iter_codewscope function in ...) - libbson ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55605 - data/CVE
Author: fgeek-guest Date: 2017-09-09 10:13:47 + (Sat, 09 Sep 2017) New Revision: 55605 Modified: data/CVE/list Log: CVE-2017-13735/libraw BTS Modified: data/CVE/list === --- data/CVE/list 2017-09-09 10:02:58 UTC (rev 55604) +++ data/CVE/list 2017-09-09 10:13:47 UTC (rev 55605) @@ -1283,7 +1283,7 @@ - graphicsmagick (unimportant) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484192 CVE-2017-13735 (There is a floating point exception in the kodak_radc_load_raw function ...) - - libraw (low) + - libraw (low; bug #874729) [wheezy] - libraw (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1483988 CVE-2017-13734 (There is an illegal address access in the _nc_safe_strcat function in ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55604 - data/CVE
Author: jmm Date: 2017-09-09 10:02:58 + (Sat, 09 Sep 2017) New Revision: 55604 Modified: data/CVE/list Log: jasper ignored Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:34:20 UTC (rev 55603) +++ data/CVE/list 2017-09-09 10:02:58 UTC (rev 55604) @@ -1,5 +1,6 @@ CVE-2017-14229 (There is an infinite loop in the jpc_dec_tileinit function in ...) - jasper + [jessie] - jasper (Minor issue) NOTE: https://github.com/mdadams/jasper/issues/146 CVE-2017-14228 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) - nasm ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55603 - data/CVE
Author: carnil Date: 2017-09-09 09:34:20 + (Sat, 09 Sep 2017) New Revision: 55603 Modified: data/CVE/list Log: Add CVE-2017-14222/ffmpeg Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:34:09 UTC (rev 55602) +++ data/CVE/list 2017-09-09 09:34:20 UTC (rev 55603) @@ -26,7 +26,8 @@ - ffmpeg NOTE: https://github.com/FFmpeg/FFmpeg/commit/afc9c683ed9db01edb357bc8c19edad4282b3a97 CVE-2017-14222 (In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack ...) - TODO: check + - ffmpeg + NOTE: https://github.com/FFmpeg/FFmpeg/commit/9cb4eb772839c5e1de2855d126bf74ff16d13382 CVE-2017-14221 RESERVED CVE-2017-14220 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55601 - data/CVE
Author: carnil Date: 2017-09-09 09:33:59 + (Sat, 09 Sep 2017) New Revision: 55601 Modified: data/CVE/list Log: Add CVE-2017-14224/imagemagick Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:33:48 UTC (rev 55600) +++ data/CVE/list 2017-09-09 09:33:59 UTC (rev 55601) @@ -18,7 +18,10 @@ - ffmpeg NOTE: https://github.com/FFmpeg/FFmpeg/commit/837cb4325b712ff1aab531bf41668933f61d75d2 CVE-2017-14224 (A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ...) - TODO: check + - imagemagick + NOTE: https://github.com/ImageMagick/ImageMagick/issues/733 + NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/7f2d6fe34d695d3445e2d50937db5541a1b76bde + NOTE: https://github.com/ImageMagick/ImageMagick/commit/c6409227c430f114b6425337e64b848535b62e0b CVE-2017-14223 (In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in ...) TODO: check CVE-2017-14222 (In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55602 - data/CVE
Author: carnil Date: 2017-09-09 09:34:09 + (Sat, 09 Sep 2017) New Revision: 55602 Modified: data/CVE/list Log: Add CVE-2017-14223/ffmpeg Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:33:59 UTC (rev 55601) +++ data/CVE/list 2017-09-09 09:34:09 UTC (rev 55602) @@ -23,7 +23,8 @@ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/7f2d6fe34d695d3445e2d50937db5541a1b76bde NOTE: https://github.com/ImageMagick/ImageMagick/commit/c6409227c430f114b6425337e64b848535b62e0b CVE-2017-14223 (In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in ...) - TODO: check + - ffmpeg + NOTE: https://github.com/FFmpeg/FFmpeg/commit/afc9c683ed9db01edb357bc8c19edad4282b3a97 CVE-2017-14222 (In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack ...) TODO: check CVE-2017-14221 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55600 - data/CVE
Author: carnil Date: 2017-09-09 09:33:48 + (Sat, 09 Sep 2017) New Revision: 55600 Modified: data/CVE/list Log: Add CVE-2017-14225/ffmpeg Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:30:44 UTC (rev 55599) +++ data/CVE/list 2017-09-09 09:33:48 UTC (rev 55600) @@ -15,7 +15,8 @@ NOTE: https://sourceforge.net/p/libwpd/code/ci/0329a9c57f9b3b0efa0f09a5235dfd90236803a5/ NOTE: https://sourceforge.net/p/libwpd/code/ci/f40827b3eae260ce657c67d9fecc855b09dea3c3/ CVE-2017-14225 (The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg ...) - TODO: check + - ffmpeg + NOTE: https://github.com/FFmpeg/FFmpeg/commit/837cb4325b712ff1aab531bf41668933f61d75d2 CVE-2017-14224 (A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ...) TODO: check CVE-2017-14223 (In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55599 - data/CVE
Author: carnil Date: 2017-09-09 09:30:44 + (Sat, 09 Sep 2017) New Revision: 55599 Modified: data/CVE/list Log: Add CVE-2017-14226/libwpd Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:30:33 UTC (rev 55598) +++ data/CVE/list 2017-09-09 09:30:44 UTC (rev 55599) @@ -10,7 +10,10 @@ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489356 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489362 CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...) - TODO: check + - libwpd + NOTE: https://bugs.documentfoundation.org/show_bug.cgi?id=112269 + NOTE: https://sourceforge.net/p/libwpd/code/ci/0329a9c57f9b3b0efa0f09a5235dfd90236803a5/ + NOTE: https://sourceforge.net/p/libwpd/code/ci/f40827b3eae260ce657c67d9fecc855b09dea3c3/ CVE-2017-14225 (The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg ...) TODO: check CVE-2017-14224 (A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55598 - data/CVE
Author: carnil Date: 2017-09-09 09:30:33 + (Sat, 09 Sep 2017) New Revision: 55598 Modified: data/CVE/list Log: Add CVE-2017-14227/libbson Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:22:45 UTC (rev 55597) +++ data/CVE/list 2017-09-09 09:30:33 UTC (rev 55598) @@ -5,7 +5,10 @@ - nasm NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392423 CVE-2017-14227 (In MongoDB libbson 1.7.0, the bson_iter_codewscope function in ...) - TODO: check + - libbson + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489355 + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489356 + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1489362 CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...) TODO: check CVE-2017-14225 (The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55597 - data/CVE
Author: carnil Date: 2017-09-09 09:22:45 + (Sat, 09 Sep 2017) New Revision: 55597 Modified: data/CVE/list Log: Add CVE-2017-14228/nasm Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:21:15 UTC (rev 55596) +++ data/CVE/list 2017-09-09 09:22:45 UTC (rev 55597) @@ -2,7 +2,8 @@ - jasper NOTE: https://github.com/mdadams/jasper/issues/146 CVE-2017-14228 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) - TODO: check + - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392423 CVE-2017-14227 (In MongoDB libbson 1.7.0, the bson_iter_codewscope function in ...) TODO: check CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55596 - data/CVE
Author: carnil Date: 2017-09-09 09:21:15 + (Sat, 09 Sep 2017) New Revision: 55596 Modified: data/CVE/list Log: Add CVE-2017-14229/jasper Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:20:00 UTC (rev 55595) +++ data/CVE/list 2017-09-09 09:21:15 UTC (rev 55596) @@ -1,5 +1,6 @@ CVE-2017-14229 (There is an infinite loop in the jpc_dec_tileinit function in ...) - TODO: check + - jasper + NOTE: https://github.com/mdadams/jasper/issues/146 CVE-2017-14228 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) TODO: check CVE-2017-14227 (In MongoDB libbson 1.7.0, the bson_iter_codewscope function in ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55595 - data/CVE
Author: carnil Date: 2017-09-09 09:20:00 + (Sat, 09 Sep 2017) New Revision: 55595 Modified: data/CVE/list Log: Add bug reference for CVE-2017-14165 Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:10:12 UTC (rev 55594) +++ data/CVE/list 2017-09-09 09:20:00 UTC (rev 55595) @@ -152,7 +152,7 @@ NOTE: https://github.com/libarchive/libarchive/commit/fa7438a0ff4033e4741c807394a9af6207940d71 NOTE: https://github.com/libarchive/libarchive/issues/935 CVE-2017-14165 (The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has ...) - - graphicsmagick (unimportant) + - graphicsmagick (unimportant; bug #874724) NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/493da54370aa NOTE: http://www.openwall.com/lists/oss-security/2017/09/06/4 NOTE: https://sourceforge.net/p/graphicsmagick/bugs/442/ ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55594 - data/CVE
Author: sectracker Date: 2017-09-09 09:10:12 + (Sat, 09 Sep 2017) New Revision: 55594 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-09-09 09:03:52 UTC (rev 55593) +++ data/CVE/list 2017-09-09 09:10:12 UTC (rev 55594) @@ -1,3 +1,19 @@ +CVE-2017-14229 (There is an infinite loop in the jpc_dec_tileinit function in ...) + TODO: check +CVE-2017-14228 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) + TODO: check +CVE-2017-14227 (In MongoDB libbson 1.7.0, the bson_iter_codewscope function in ...) + TODO: check +CVE-2017-14226 (WP1StylesListener.cpp, WP5StylesListener.cpp, and ...) + TODO: check +CVE-2017-14225 (The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg ...) + TODO: check +CVE-2017-14224 (A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ...) + TODO: check +CVE-2017-14223 (In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in ...) + TODO: check +CVE-2017-14222 (In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack ...) + TODO: check CVE-2017-14221 RESERVED CVE-2017-14220 @@ -143,6 +159,7 @@ CVE-2017-14160 RESERVED CVE-2017-14176 [bzr+ssh URLs don't strip SSH options] + RESERVED - bzr 2.7.0+bzr6622-7 (bug #874429) NOTE: https://bugs.launchpad.net/bzr/+bug/1710979 CVE-2017-14159 (slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping ...) @@ -4261,12 +4278,12 @@ NOT-FOR-US: Siemens CVE-2017-12734 (A vulnerability has been identified in Siemens LOGO! devices before ...) NOT-FOR-US: Siemens -CVE-2017-12733 - RESERVED +CVE-2017-12733 (A Missing Authentication for Critical Function issue was discovered in ...) + TODO: check CVE-2017-12732 RESERVED -CVE-2017-12731 - RESERVED +CVE-2017-12731 (A SQL Injection issue was discovered in OPW Fuel Management Systems ...) + TODO: check CVE-2017-12730 RESERVED CVE-2017-12729 @@ -4329,8 +4346,8 @@ RESERVED CVE-2017-12700 RESERVED -CVE-2017-12699 - RESERVED +CVE-2017-12699 (An Incorrect Default Permissions issue was discovered in AzeoTech ...) + TODO: check CVE-2017-12698 (An Improper Authentication issue was discovered in Advantech WebAccess ...) NOT-FOR-US: Advantech WebAccess CVE-2017-12697 @@ -17279,10 +17296,10 @@ RESERVED CVE-2017-8042 RESERVED -CVE-2017-8041 - RESERVED -CVE-2017-8040 - RESERVED +CVE-2017-8041 (In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior ...) + TODO: check +CVE-2017-8040 (In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior ...) + TODO: check CVE-2017-8039 RESERVED CVE-2017-8038 @@ -27085,8 +27102,8 @@ NOT-FOR-US: St. Jude Medical Merlin@home CVE-2017-5148 RESERVED -CVE-2017-5147 - RESERVED +CVE-2017-5147 (An Uncontrolled Search Path Element issue was discovered in AzeoTech ...) + TODO: check CVE-2017-5146 (An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware ...) NOT-FOR-US: Carlo Gavazzi CVE-2017-5145 (An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55593 - data/CVE
Author: carnil Date: 2017-09-09 09:03:52 + (Sat, 09 Sep 2017) New Revision: 55593 Modified: data/CVE/list Log: Add upstream bug reference for CVE-2017-14165 Modified: data/CVE/list === --- data/CVE/list 2017-09-09 07:11:51 UTC (rev 55592) +++ data/CVE/list 2017-09-09 09:03:52 UTC (rev 55593) @@ -139,6 +139,7 @@ - graphicsmagick (unimportant) NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/493da54370aa NOTE: http://www.openwall.com/lists/oss-security/2017/09/06/4 + NOTE: https://sourceforge.net/p/graphicsmagick/bugs/442/ CVE-2017-14160 RESERVED CVE-2017-14176 [bzr+ssh URLs don't strip SSH options] ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r55592 - data/CVE
Author: carnil
Date: 2017-09-09 07:11:51 + (Sat, 09 Sep 2017)
New Revision: 55592
Modified:
data/CVE/list
Log:
Mark CVE-2017-14166/libarchive as no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2017-09-09 06:52:58 UTC (rev 55591)
+++ data/CVE/list 2017-09-09 07:11:51 UTC (rev 55592)
@@ -130,6 +130,8 @@
CVE-2017-14166 (libarchive 3.3.2 allows remote attackers to cause a denial of
service ...)
{DLA-1092-1}
- libarchive (bug #874539)
+ [stretch] - libarchive (Minor issue)
+ [jessie] - libarchive (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2017/09/06/5
NOTE:
https://github.com/libarchive/libarchive/commit/fa7438a0ff4033e4741c807394a9af6207940d71
NOTE: https://github.com/libarchive/libarchive/issues/935
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
