[Secure-testing-commits] r6912 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Thu Oct 11 22:07:38 UTC 2007


Author: nion
Date: 2007-10-11 22:07:37 +0000 (Thu, 11 Oct 2007)
New Revision: 6912

Modified:
   data/CVE/list
Log:
CVE-2007-5269 new issue: libpng

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-11 21:23:49 UTC (rev 6911)
+++ data/CVE/list	2007-10-11 22:07:37 UTC (rev 6912)
@@ -221,7 +221,7 @@
 CVE-2007-5270 (Unspecified vulnerability in the Boost module before 4.7.x-1.0, and ...)
 	- drupal <not-affected> (does not ship this module)
 CVE-2007-5269 (Certain chunk handlers in libpng before 1.0.29 and 1.2.x before 1.2.21 ...)
-	- libpng <not-affected> (vulnerable code not present in Debian version)
+	- libpng <unfixed> (low; bug #446308)
 CVE-2007-5268 (pngrtran.c in libpng before 1.0.29 and 1.2.x before 1.2.21 use (1) ...)
 	- libpng <not-affected> (vulnerable code not present in Debian version)
 CVE-2007-5267 (Off-by-one error in ICC profile chunk handling in the png_set_iCCP ...)




More information about the Secure-testing-commits mailing list