[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixed version for r-cran-readxl issues

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
1939d1fb by Salvatore Bonaccorso at 2018-04-13T05:05:04+02:00
Add fixed version for r-cran-readxl issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -42273,10 +42273,10 @@ CVE-2017-12113 (An exploitable improper authorization 
vulnerability exists in ..
 CVE-2017-12112 (An exploitable improper authorization vulnerability exists in 
...)
        - cpp-ethereum <itp> (bug #860434)
 CVE-2017-12111 (An exploitable out-of-bounds vulnerability exists in the 
xls_addCell ...)
-       - r-cran-readxl <unfixed> (bug #895564)
+       - r-cran-readxl 1.0.0-2 (bug #895564)
        NOTE: 
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0463
 CVE-2017-12110 (An exploitable integer overflow vulnerability exists in the 
...)
-       - r-cran-readxl <unfixed> (bug #895564)
+       - r-cran-readxl 1.0.0-2 (bug #895564)
        NOTE: 
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0462
 CVE-2017-12109
        RESERVED
@@ -70839,7 +70839,7 @@ CVE-2017-2921 (An exploitable memory corruption 
vulnerability exists in the Webs
 CVE-2017-2920 (An memory corruption vulnerability exists in the .SVG parsing 
...)
        NOT-FOR-US: Computerinsel Photoline
 CVE-2017-2919 (An exploitable stack based buffer overflow vulnerability exists 
in the ...)
-       - r-cran-readxl <unfixed> (bug #895564)
+       - r-cran-readxl 1.0.0-2 (bug #895564)
        NOTE: 
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0426
 CVE-2017-2918
        RESERVED
@@ -70885,10 +70885,10 @@ CVE-2017-2899
 CVE-2017-2898 (An exploitable vulnerability exists in the signature 
verification of ...)
        NOT-FOR-US: Circle with Disney
 CVE-2017-2897 (An exploitable out-of-bounds write vulnerability exists in the 
...)
-       - r-cran-readxl <unfixed> (bug #895564)
+       - r-cran-readxl 1.0.0-2 (bug #895564)
        NOTE: 
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0404
 CVE-2017-2896 (An exploitable out-of-bounds write vulnerability exists in the 
...)
-       - r-cran-readxl <unfixed> (bug #895564)
+       - r-cran-readxl 1.0.0-2 (bug #895564)
        NOTE: 
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0403
 CVE-2017-2895 (An exploitable arbitrary memory read vulnerability exists in 
the MQTT ...)
        NOT-FOR-US: Cesanta Mongoose



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1939d1fb230f57809d20a33ae017be6417729df0

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1939d1fb230f57809d20a33ae017be6417729df0
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits