[Secure-testing-commits] r25051 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jan 5 06:09:58 UTC 2014 

Author: carnil
Date: 2014-01-05 06:09:58 +0000 (Sun, 05 Jan 2014)
New Revision: 25051

Modified:
   data/CVE/list
Log:
Add fixed version information for openjpeg CVEs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-01-04 22:05:45 UTC (rev 25050)
+++ data/CVE/list	2014-01-05 06:09:58 UTC (rev 25051)
@@ -2571,7 +2571,7 @@
 	- devscripts 2.13.9
 CVE-2013-6887
 	RESERVED
-	- openjpeg <not-affected> (only affects 1.5, in experimental)
+	- openjpeg <not-affected> (only affects 1.5, in experimental, see #731237)
 CVE-2013-6886 (RealVNC VNC 5.0.6 on Mac OS X, Linux, and UNIX allows local users to ...)
 	TODO: check
 CVE-2013-6884
@@ -4595,13 +4595,13 @@
 	RESERVED
 CVE-2013-6054 (Heap-based buffer overflow in OpenJPEG 1.3 has unspecified impact and ...)
 	{DSA-2808-1}
-	- openjpeg <unfixed> (bug #731237)
+	- openjpeg 1.3+dfsg-4.7 (bug #731237)
 CVE-2013-6053
 	RESERVED
-	- openjpeg <not-affected> (only affects 1.5, in experimental)
+	- openjpeg <not-affected> (only affects 1.5, in experimental, see #731237)
 CVE-2013-6052 (OpenJPEG 1.3 and earlier allows remote attackers to obtain sensitive ...)
 	{DSA-2808-1}
-	- openjpeg <unfixed> (bug #731237)
+	- openjpeg 1.3+dfsg-4.7 (bug #731237)
 CVE-2013-6051 (The bgp_attr_unknown function in bgp_attr.c in Quagga 0.99.21 does not ...)
 	{DSA-2803-1}
 	- quagga 0.99.22.4-1 (bug #730513)
@@ -4626,7 +4626,7 @@
 	RESERVED
 CVE-2013-6045 (Multiple heap-based buffer overflows in OpenJPEG 1.3 and earlier might ...)
 	{DSA-2808-1}
-	- openjpeg <unfixed> (bug #731237)
+	- openjpeg 1.3+dfsg-4.7 (bug #731237)
 CVE-2013-6044 (The is_safe_url function in utils/http.py in Django 1.4.x before ...)
 	{DSA-2740-1}
 	- python-django 1.5.2-1
@@ -17048,7 +17048,7 @@
 	RESERVED
 CVE-2013-1447 (OpenJPEG 1.3 and earlier allows remote attackers to cause a denial of ...)
 	{DSA-2808-1}
-	- openjpeg <unfixed> (bug #731237)
+	- openjpeg 1.3+dfsg-4.7 (bug #731237)
 CVE-2013-1446
 	RESERVED
 CVE-2013-1445 (The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not ...)

More information about the Secure-testing-commits mailing list