Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits: 214cd02c by Moritz Muehlenhoff at 2018-01-26T13:52:22+01:00 clamav not updated via -security - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -30562,30 +30562,44 @@ CVE-2017-12381 CVE-2017-12380 [ClamAV Null Dereference Vulnerability] RESERVED - clamav <unfixed> (bug #888484) + [stretch] - clamav <no-dsa> (clamav is updated via -updates) + [jessie] - clamav <no-dsa> (clamav is updated via -updates) NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html CVE-2017-12379 [ClamAV Buffer Overflow in messageAddArgument Vulnerability] RESERVED - clamav <unfixed> (bug #888484) + [stretch] - clamav <no-dsa> (clamav is updated via -updates) + [jessie] - clamav <no-dsa> (clamav is updated via -updates) NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html CVE-2017-12378 [ClamAV Buffer Over Read Vulnerability] RESERVED - clamav <unfixed> (bug #888484) + [stretch] - clamav <no-dsa> (clamav is updated via -updates) + [jessie] - clamav <no-dsa> (clamav is updated via -updates) NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html CVE-2017-12377 [ClamAV Mew Packet Heap Overflow Vulnerability] RESERVED - clamav <unfixed> (bug #888484) + [stretch] - clamav <no-dsa> (clamav is updated via -updates) + [jessie] - clamav <no-dsa> (clamav is updated via -updates) NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html CVE-2017-12376 [ClamAV Buffer Overflow in handle_pdfname Vulnerability] RESERVED - clamav <unfixed> (bug #888484) + [stretch] - clamav <no-dsa> (clamav is updated via -updates) + [jessie] - clamav <no-dsa> (clamav is updated via -updates) NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html CVE-2017-12375 [ClamAV Buffer Overflow Vulnerability] RESERVED - clamav <unfixed> (bug #888484) + [stretch] - clamav <no-dsa> (clamav is updated via -updates) + [jessie] - clamav <no-dsa> (clamav is updated via -updates) NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html CVE-2017-12374 [ClamAV UAF (use-after-free) Vulnerabilities] RESERVED - clamav <unfixed> (bug #888484) + [stretch] - clamav <no-dsa> (clamav is updated via -updates) + [jessie] - clamav <no-dsa> (clamav is updated via -updates) NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html CVE-2017-12373 (A vulnerability in the TLS protocol implementation of legacy Cisco ASA ...) NOT-FOR-US: Cisco View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/214cd02c8c3e5f93e8eea1fa9825cb64b8d0a43a --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/214cd02c8c3e5f93e8eea1fa9825cb64b8d0a43a You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits