[Secure-testing-commits] r35843 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Aug 2 11:20:29 UTC 2015
Author: carnil
Date: 2015-08-02 11:20:29 +0000 (Sun, 02 Aug 2015)
New Revision: 35843
Modified:
data/CVE/list
Log:
Mark djvulibre again as unfixed, issue reintroduced
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-02 09:46:45 UTC (rev 35842)
+++ data/CVE/list 2015-08-02 11:20:29 UTC (rev 35843)
@@ -14097,10 +14097,12 @@
[squeeze] - mutt <no-dsa> (Minor issue)
NOTE: http://dev.mutt.org/hg/mutt/rev/babc30377614
CVE-2015-XXXX [djvudigital: insecure use of /tmp]
- - djvulibre 3.5.27.1-1 (bug #775193)
+ - djvulibre <unfixed> (bug #775193)
[jessie] - djvulibre <no-dsa> (Minor issue)
[wheezy] - djvulibre <no-dsa> (Minor issue)
[squeeze] - djvulibre <no-dsa> (Minor issue)
+ NOTE: Originally was addressed in 3.5.27.1-1 but it was reintroduced
+ NOTE: with the 3.5.27.1-2 upload, cf. https://bugs.debian.org/775193#17
CVE-2015-5701 [mktexlsr: reintroduced insecure use of /tmp, in revision 36855]
RESERVED
- texlive-bin <not-affected> (Vulnerable code not reintroduced, patch mktexlsr-use-mktemp still applied)
More information about the Secure-testing-commits
mailing list