CVE-2017-9214 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9214): In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function `ofputil_pull_queue_get_config_reply10` in `lib/ofp-util.c`. CVE-2017-9212 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9212): The Bluetooth stack on the BMW 330i 2011 allows a remote crash of the CD/Multimedia software via %x or %c format string specifiers in a device name.
Sorry, invalid bug. I was testing GLSAmaker.