[Secure-testing-commits] r30557 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 5 07:25:56 UTC 2014
Author: carnil
Date: 2014-12-05 07:25:56 +0000 (Fri, 05 Dec 2014)
New Revision: 30557
Modified:
data/CVE/list
Log:
Add upstream patch and upstream bug reference for eyed3
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-05 07:18:38 UTC (rev 30556)
+++ data/CVE/list 2014-12-05 07:25:56 UTC (rev 30557)
@@ -18938,6 +18938,8 @@
[jessie] - eyed3 <no-dsa> (Minor issue)
[squeeze] - eyed3 <no-dsa> (Minor issue)
[wheezy] - eyed3 <no-dsa> (Minor issue)
+ NOTE: Upstream patch: https://bitbucket.org/nicfit/eyed3/commits/372bbacb7a70
+ NOTE: https://bitbucket.org/nicfit/eyed3/issue/65/tagpy-in-eyed3-allows-local-users-to
CVE-2014-1933 (The (1) JpegImagePlugin.py and (2) EpsImagePlugin.py scripts in Python ...)
- pillow 2.4.0-1 (low; bug #737059)
- python-imaging <removed>
More information about the Secure-testing-commits
mailing list