[Secure-testing-commits] r38175 - data/CVE
Guido Guenther
agx at moszumanska.debian.org
Tue Dec 8 18:08:10 UTC 2015
Author: agx
Date: 2015-12-08 18:08:10 +0000 (Tue, 08 Dec 2015)
New Revision: 38175
Modified:
data/CVE/list
Log:
squeeze's libraw not affected by CVE-2015-8367
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-08 18:08:03 UTC (rev 38174)
+++ data/CVE/list 2015-12-08 18:08:10 UTC (rev 38175)
@@ -656,6 +656,7 @@
CVE-2015-8367 [Memory objects are not intialized properly]
RESERVED
- libraw 0.17.1-1 (bug #806809)
+ [squeeze] - libraw <not-affected> (Vulerable code not present)
NOTE: https://github.com/LibRaw/LibRaw/commit/89d065424f09b788f443734d44857289489ca9e2
TODO: check other copies containing libraw code
CVE-2015-8366 [Index overflow in smal_decode_segment]
More information about the Secure-testing-commits
mailing list