[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add new clamav CVEs

Salvatore Bonaccorso Sat, 27 Jan 2018 00:15:27 -0800

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
3deb7178 by Salvatore Bonaccorso at 2018-01-26T13:08:36+01:00
Add new clamav CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -30558,20 +30558,34 @@ CVE-2017-12382
        RESERVED
 CVE-2017-12381
        RESERVED
-CVE-2017-12380
+CVE-2017-12380 [ClamAV Null Dereference Vulnerability]
        RESERVED
-CVE-2017-12379
+       - clamav <unfixed> (bug #888484)
+       NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12379 [ClamAV Buffer Overflow in messageAddArgument Vulnerability]
        RESERVED
-CVE-2017-12378
+       - clamav <unfixed> (bug #888484)
+       NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12378 [ClamAV Buffer Over Read Vulnerability]
        RESERVED
-CVE-2017-12377
+       - clamav <unfixed> (bug #888484)
+       NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12377 [ClamAV Mew Packet Heap Overflow Vulnerability]
        RESERVED
-CVE-2017-12376
+       - clamav <unfixed> (bug #888484)
+       NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12376 [ClamAV Buffer Overflow in handle_pdfname Vulnerability]
        RESERVED
-CVE-2017-12375
+       - clamav <unfixed> (bug #888484)
+       NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12375 [ClamAV Buffer Overflow Vulnerability]
        RESERVED
-CVE-2017-12374
+       - clamav <unfixed> (bug #888484)
+       NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
+CVE-2017-12374 [ClamAV UAF (use-after-free) Vulnerabilities]
        RESERVED
+       - clamav <unfixed> (bug #888484)
+       NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
 CVE-2017-12373 (A vulnerability in the TLS protocol implementation of legacy 
Cisco ASA ...)
        NOT-FOR-US: Cisco
 CVE-2017-12372 (A &quot;Cisco WebEx Network Recording Player Remote Code 
Execution ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3deb7178016069acbb41b93dec506c852ad66879

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3deb7178016069acbb41b93dec506c852ad66879
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add new clamav CVEs

Reply via email to