[Secure-testing-commits] r23850 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Tue Oct 1 20:13:23 UTC 2013
Author: carnil
Date: 2013-10-01 20:13:22 +0000 (Tue, 01 Oct 2013)
New Revision: 23850
Modified:
data/CVE/list
Log:
Add fixed versions for CVE-2013-1439 and CVE-2013-1438 (libkdcraw)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-10-01 19:22:53 UTC (rev 23849)
+++ data/CVE/list 2013-10-01 20:13:22 UTC (rev 23850)
@@ -11664,14 +11664,14 @@
RESERVED
CVE-2013-1439 (The "faster LJPEG decoder" in libraw 0.13.x, 0.14.x, and 0.15.x before ...)
- libraw <unfixed> (bug #721338)
- - libkdcraw <unfixed> (bug #721340)
+ - libkdcraw 4:4.10.5-2 (bug #721340)
- darktable 1.2.2-2 (bug #721339)
[wheezy] - darktable <no-dsa> (end-user app)
CVE-2013-1438 [dcraw: multiple DoS]
RESERVED
{DSA-2748-1}
- libraw <unfixed> (bug #721231)
- - libkdcraw <unfixed> (bug #721239)
+ - libkdcraw 4:4.10.5-2 (bug #721239)
- darktable 1.2.2-2 (bug #721233)
[wheezy] - darktable <no-dsa> (end-user app)
- dcraw <unfixed> (unimportant; bug #721232)
More information about the Secure-testing-commits
mailing list