[Secure-testing-commits] r51866 - data/CVE

Tue, 23 May 2017 01:03:59 -0700 

Author: hertzog
Date: 2017-05-23 08:03:15 +0000 (Tue, 23 May 2017)
New Revision: 51866

Modified:
   data/CVE/list
Log:
Filed a github issue for the OpenEXR CVE

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-05-23 08:02:54 UTC (rev 51865)
+++ data/CVE/list       2017-05-23 08:03:15 UTC (rev 51866)
@@ -81,24 +81,31 @@
 CVE-2017-9116 (In OpenEXR 2.2.0, an invalid read of size 1 in the uncompress 
function ...)
        - openexr <unfixed>
        NOTE: http://www.openwall.com/lists/oss-security/2017/05/12/5
+       NOTE: https://github.com/openexr/openexr/issues/232
 CVE-2017-9115 (In OpenEXR 2.2.0, an invalid write of size 2 in the = operator 
function ...)
        - openexr <unfixed>
        NOTE: http://www.openwall.com/lists/oss-security/2017/05/12/5
+       NOTE: https://github.com/openexr/openexr/issues/232
 CVE-2017-9114 (In OpenEXR 2.2.0, an invalid read of size 1 in the refill 
function in ...)
        - openexr <unfixed>
        NOTE: http://www.openwall.com/lists/oss-security/2017/05/12/5
+       NOTE: https://github.com/openexr/openexr/issues/232
 CVE-2017-9113 (In OpenEXR 2.2.0, an invalid write of size 1 in the 
bufferedReadPixels ...)
        - openexr <unfixed>
        NOTE: http://www.openwall.com/lists/oss-security/2017/05/12/5
+       NOTE: https://github.com/openexr/openexr/issues/232
 CVE-2017-9112 (In OpenEXR 2.2.0, an invalid read of size 1 in the getBits 
function in ...)
        - openexr <unfixed>
        NOTE: http://www.openwall.com/lists/oss-security/2017/05/12/5
+       NOTE: https://github.com/openexr/openexr/issues/232
 CVE-2017-9111 (In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE 
function ...)
        - openexr <unfixed>
        NOTE: http://www.openwall.com/lists/oss-security/2017/05/12/5
+       NOTE: https://github.com/openexr/openexr/issues/232
 CVE-2017-9110 (In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode 
function ...)
        - openexr <unfixed>
        NOTE: http://www.openwall.com/lists/oss-security/2017/05/12/5
+       NOTE: https://github.com/openexr/openexr/issues/232
 CVE-2017-9109
        RESERVED
 CVE-2017-9108


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to