Author: carnil
Date: 2017-06-30 13:54:16 +0000 (Fri, 30 Jun 2017)
New Revision: 53039
Modified:
data/CVE/list
Log:
Add CVE-2017-10687/libsass
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-30 13:54:04 UTC (rev 53038)
+++ data/CVE/list 2017-06-30 13:54:16 UTC (rev 53039)
@@ -23,7 +23,8 @@
- tiff3 <removed>
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2712
CVE-2017-10687 (In LibSass 3.4.5, there is a heap-based buffer over-read in
the ...)
- TODO: check
+ - libsass <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1466411
CVE-2017-10686 (In Netwide Assembler (NASM) 2.14rc0, there are multiple heap
use after ...)
TODO: check
CVE-2017-10685 (In ncurses 6.0, there is a format string vulnerability in the
fmt_entry ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
