Author: jmm Date: 2017-08-11 22:07:06 +0000 (Fri, 11 Aug 2017) New Revision: 54653
Modified: data/CVE/list Log: fontforge upstream fixes Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-08-11 22:06:34 UTC (rev 54652) +++ data/CVE/list 2017-08-11 22:07:06 UTC (rev 54653) @@ -3029,15 +3029,19 @@ CVE-2017-11577 (FontForge 20161012 is vulnerable to a buffer over-read in getsid ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3088 + NOTE: https://github.com/fontforge/fontforge/commit/3245d354865def9d712bdffe61fa211ad6aa4081 CVE-2017-11576 (FontForge 20161012 does not ensure a positive size in a weight vector ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3091 + NOTE: https://github.com/fontforge/fontforge/commit/df349365630344ef3004a3c7934c7e7496692fb1 CVE-2017-11575 (FontForge 20161012 is vulnerable to a buffer over-read in strnmatch ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3096 + NOTE: https://github.com/fontforge/fontforge/commit/4de0c58a01e5e30610c200e9aea98bc7db12c7ac CVE-2017-11574 (FontForge 20161012 is vulnerable to a heap-based buffer overflow in ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3090 + NOTE: https://github.com/fontforge/fontforge/commit/62b6433a81ee7ed6e0ac2d6b09ac85b885046ac3 CVE-2017-11573 (FontForge 20161012 is vulnerable to a buffer over-read in ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3098 @@ -3047,12 +3051,14 @@ CVE-2017-11571 (FontForge 20161012 is vulnerable to a stack-based buffer overflow in ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3087 + NOTE: https://github.com/fontforge/fontforge/commit/5a0c6522682b0788fc478dd159dd6168cb5fa38b CVE-2017-11570 (FontForge 20161012 is vulnerable to a buffer over-read in umodenc ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3097 CVE-2017-11569 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3093 + NOTE: https://github.com/fontforge/fontforge/commit/7bfec47910293bf149b8debe44c6f3f788506092 CVE-2017-11568 (FontForge 20161012 is vulnerable to a heap-based buffer over-read in ...) - fontforge <unfixed> (bug #869614) NOTE: https://github.com/fontforge/fontforge/issues/3089 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits