Author: carnil Date: 2017-07-24 19:49:02 +0000 (Mon, 24 Jul 2017) New Revision: 53868
Modified: data/CVE/list Log: Add two more exiv2 issues Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-07-24 19:37:19 UTC (rev 53867) +++ data/CVE/list 2017-07-24 19:49:02 UTC (rev 53868) @@ -31,9 +31,11 @@ CVE-2017-11593 (Cross-site scripting (XSS) vulnerability in the Markdown Preview Plus ...) TODO: check CVE-2017-11592 (There is a Mismatched Memory Management Routines vulnerability in the ...) - TODO: check + - exiv2 <unfixed> + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1473889 CVE-2017-11591 (There is a Floating point exception in the Exiv2::ValueType function in ...) - TODO: check + - exiv2 <unfixed> + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1473888 CVE-2017-11590 (There is a NULL pointer dereference in the caseless_hash function in ...) - libgxps <unfixed> [stretch] - libgxps <not-affected> (Vulnerable function introduced later) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits