[Secure-testing-commits] r23850 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Tue Oct 1 20:13:23 UTC 2013


Author: carnil
Date: 2013-10-01 20:13:22 +0000 (Tue, 01 Oct 2013)
New Revision: 23850

Modified:
   data/CVE/list
Log:
Add fixed versions for CVE-2013-1439 and CVE-2013-1438 (libkdcraw)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-10-01 19:22:53 UTC (rev 23849)
+++ data/CVE/list	2013-10-01 20:13:22 UTC (rev 23850)
@@ -11664,14 +11664,14 @@
 	RESERVED
 CVE-2013-1439 (The "faster LJPEG decoder" in libraw 0.13.x, 0.14.x, and 0.15.x before ...)
 	- libraw <unfixed> (bug #721338)
-	- libkdcraw <unfixed> (bug #721340)
+	- libkdcraw 4:4.10.5-2 (bug #721340)
 	- darktable 1.2.2-2 (bug #721339)
 	[wheezy] - darktable <no-dsa> (end-user app)
 CVE-2013-1438 [dcraw: multiple DoS]
 	RESERVED
 	{DSA-2748-1}
 	- libraw <unfixed> (bug #721231)
-	- libkdcraw <unfixed> (bug #721239)
+	- libkdcraw 4:4.10.5-2 (bug #721239)
 	- darktable 1.2.2-2 (bug #721233)
 	[wheezy] - darktable <no-dsa> (end-user app)
 	- dcraw <unfixed> (unimportant; bug #721232)




More information about the Secure-testing-commits mailing list