Information on source package libplist

Available versions

ReleaseVersion
wheezy1.8-1
wheezy (security)1.8-1+deb7u3
jessie1.11-3
stretch1.12+git+1+e37ca00-0.1
sid1.12+git+1+e37ca00-0.1

Open issues

BugwheezyjessiestretchsidDescription
CVE-2017-6440vulnerablevulnerable (no DSA)vulnerablevulnerableThe parse_data_node function in bplist.c in libimobiledevice libplist ...
CVE-2017-6439fixedvulnerable (no DSA)fixedfixedHeap-based buffer overflow in the parse_string_node function in ...
CVE-2017-6438vulnerablevulnerable (no DSA)vulnerablevulnerableHeap-based buffer overflow in the parse_unicode_node function in ...
CVE-2017-6437vulnerablevulnerable (no DSA)vulnerablevulnerableThe base64encode function in base64.c in libimobiledevice libplist ...
CVE-2017-6436fixedvulnerable (no DSA)fixedfixedThe parse_string_node function in bplist.c in libimobiledevice ...
CVE-2017-6435fixedvulnerable (no DSA)fixedfixedThe parse_string_node function in bplist.c in libimobiledevice ...
CVE-2017-5836vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe plist_free_data function in plist.c in libplist allows attackers ...
CVE-2017-5835fixedvulnerable (no DSA)fixedfixedlibplist allows attackers to cause a denial of service (large memory ...
CVE-2017-5834fixedvulnerable (no DSA)fixedfixedThe parse_dict_node function in bplist.c in libplist allows attackers ...
CVE-2017-5545fixedvulnerable (no DSA)fixedfixedThe main function in plistutil.c in libimobiledevice libplist through ...
CVE-2017-5209fixedvulnerable (no DSA)fixedfixedThe base64decode function in base64.c in libimobiledevice libplist ...

Security announcements

DSA / DLADescription
DLA-870-1libplist - security update
DLA-840-1libplist - security update
DLA-811-1libplist - security update

Search for package or bug name: Reporting problems