Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 9a7c694d by Salvatore Bonaccorso at 2018-01-01T20:27:40+01:00 Add CVE-2017-17821 for WebKit issue Quickly checked webkit2gtk only and marked as unimportant as not supported security-wise. The issue might affect as well qtwebkit, qtwebkit-opensource-src and webkitgtk itself. - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -994,7 +994,10 @@ CVE-2017-17823 (The Configuration component of Piwigo 2.9.2 is vulnerable to SQL CVE-2017-17822 (The List Users API of Piwigo 2.9.2 is vulnerable to SQL Injection via ...) - piwigo <removed> CVE-2017-17821 (WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology ...) - TODO: check + - webkit2gtk <unfixed> (unimportant) + NOTE: https://bugs.webkit.org/show_bug.cgi?id=181020 (not public) + NOTE: Not covered by security support + TODO: check, possibly as well qtwebkit, qtwebkit-opensource-src, webkitgtk CVE-2017-17820 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) - nasm 2.13.02-0.1 [stretch] - nasm <no-dsa> (Minor issue) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9a7c694d975edd533677ce637a2f922b85f7529c --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9a7c694d975edd533677ce637a2f922b85f7529c You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits