Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: afcbb5b9 by Salvatore Bonaccorso at 2018-12-26T07:18:53Z Add CVE-2018-20461/radare2 - - - - - 207b7411 by Salvatore Bonaccorso at 2018-12-26T07:19:44Z Add CVE-2018-20460/radare2 - - - - - f040545e by Salvatore Bonaccorso at 2018-12-26T07:20:08Z Add CVE-2018-20459/radare2 - - - - - 2357297b by Salvatore Bonaccorso at 2018-12-26T07:20:24Z Add CVE-2018-20457/radare2 - - - - - b130fd30 by Salvatore Bonaccorso at 2018-12-26T07:21:22Z Add CVE-2018-20458/radare2 - - - - - a61df2db by Salvatore Bonaccorso at 2018-12-26T07:21:57Z Add CVE-2018-20456/radare2 - - - - - 91b0d69e by Salvatore Bonaccorso at 2018-12-26T07:22:42Z Add CVE-2018-20455/radare2 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,17 +1,31 @@ CVE-2018-20461 (In radare2 prior to 3.1.1, core_anal_bytes in libr/core/cmd_anal.c ...) - TODO: check + - radare2 3.1.2+dfsg-1 + NOTE: https://github.com/radare/radare2/commit/a1bc65c3db593530775823d6d7506a457ed95267 + NOTE: https://github.com/radare/radare2/issues/12375 CVE-2018-20460 (In radare2 prior to 3.1.2, the parseOperands function in ...) - TODO: check + - radare2 3.1.2+dfsg-1 + NOTE: https://github.com/radare/radare2/commit/df167c7db545953bb7f71c72e98e7a3ca0c793bf + NOTE: https://github.com/radare/radare2/issues/12376 CVE-2018-20459 (In radare2 through 3.1.3, the armass_assemble function in ...) - TODO: check + - radare2 <unfixed> + NOTE: https://github.com/radare/radare2/commit/e5c14c167b0dcf0a53d76bd50bacbbcc0dfc1ae7 + NOTE: https://github.com/radare/radare2/issues/12418 CVE-2018-20458 (In radare2 prior to 3.1.1, r_bin_dyldcache_extract in ...) - TODO: check + - radare2 <unfixed> + NOTE: https://github.com/radare/radare2/commit/30f4c7b52a4e2dc0d0b1bae487d90f5437c69d19 + NOTE: https://github.com/radare/radare2/issues/12374 CVE-2018-20457 (In radare2 through 3.1.3, the assemble function inside ...) - TODO: check + - radare2 <unfixed> + NOTE: https://github.com/radare/radare2/commit/e5c14c167b0dcf0a53d76bd50bacbbcc0dfc1ae7 + NOTE: https://github.com/radare/radare2/issues/12417 CVE-2018-20456 (In radare2 prior to 3.1.1, the parseOperand function inside ...) - TODO: check + - radare2 3.1.2+dfsg-1 + NOTE: https://github.com/radare/radare2/commit/9b46d38dd3c4de6048a488b655c7319f845af185 + NOTE: https://github.com/radare/radare2/issues/12372 CVE-2018-20455 (In radare2 prior to 3.1.1, the parseOperand function inside ...) - TODO: check + - radare2 3.1.2+dfsg-1 + NOTE: https://github.com/radare/radare2/commit/9b46d38dd3c4de6048a488b655c7319f845af185 + NOTE: https://github.com/radare/radare2/issues/12373 CVE-2018-20454 (An issue was discovered in 74cms v4.2.111. ...) TODO: check CVE-2018-20453 (The getlong function in numutils.c in libdoc through 2017-10-23 has a ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/9940ae5972952eef9e3f1c9f7a5b22a9e8e35a2b...91b0d69e31b233fb992d5e753867a7083bb925e1 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/9940ae5972952eef9e3f1c9f7a5b22a9e8e35a2b...91b0d69e31b233fb992d5e753867a7083bb925e1 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
