Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f3873f02 by Salvatore Bonaccorso at 2018-02-26T15:01:03+01:00
Add CVE-2018-100009{8,9}/pjproject
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -6,12 +6,14 @@ CVE-2018-7482
RESERVED
CVE-2017-18200 (The f2fs implementation in the Linux kernel before 4.14
mishandles ...)
- linux <not-affected> (Vulnerable code not present)
-CVE-2018-XXXX [AST-2018-003: Crash with an invalid SDP fmtp attribute]
+CVE-2018-1000099 [AST-2018-003: Crash with an invalid SDP fmtp attribute]
- pjproject 2.7.2~dfsg-1
NOTE: http://downloads.asterisk.org/pub/security/AST-2018-003.html
-CVE-2018-XXXX [AST-2018-002: Crash when given an invalid SDP media format
description]
+ NOTE: https://trac.pjsip.org/repos/ticket/2092
+CVE-2018-1000098 [AST-2018-002: Crash when given an invalid SDP media format
description]
- pjproject 2.7.2~dfsg-1
NOTE: http://downloads.asterisk.org/pub/security/AST-2018-002.html
+ NOTE: https://trac.pjsip.org/repos/ticket/2093
CVE-2018-1000101 [Improper null termination in stdio/[v]snprintf.c can result
in memory corruption in subsequent string functions]
- mingw-w64 <unfixed>
NOTE: https://sourceforge.net/p/mingw-w64/bugs/709/
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3873f02be676bd2155981d1f0ff4d31d71501c0
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3873f02be676bd2155981d1f0ff4d31d71501c0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
