[Secure-testing-commits] r44146 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Aug 25 19:32:18 UTC 2016


Author: carnil
Date: 2016-08-25 19:32:17 +0000 (Thu, 25 Aug 2016)
New Revision: 44146

Modified:
   data/CVE/list
Log:
Mark the <unfixed> entries for src:openjpeg as removed

Keep for now the <undetermined> ones as such, since those issues are not
investigated and might be <not-affected>.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-08-25 19:29:10 UTC (rev 44145)
+++ data/CVE/list	2016-08-25 19:32:17 UTC (rev 44146)
@@ -81368,10 +81368,10 @@
 	[squeeze] - libvirt <not-affected> (vulnerable code not introduced, introduced in 1.1.1)
 	NOTE: http://libvirt.org/git/?p=libvirt.git;a=commit;h=745aa55fbf3e076c4288d5ec3239f5a5d43508a6
 CVE-2013-4290 (Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote ...)
-	- openjpeg <unfixed> (unimportant; bug #722540)
+	- openjpeg <removed> (unimportant; bug #722540)
 	NOTE: JP3D code not built in the binary package, see #722540
 CVE-2013-4289 (Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before ...)
-	- openjpeg <unfixed> (unimportant; bug #722540)
+	- openjpeg <removed> (unimportant; bug #722540)
 	NOTE: JP3D code not built in the binary package, see #722540
 CVE-2013-4288 (Race condition in PolicyKit (aka polkit) allows local users to bypass ...)
 	- policykit-1 0.105-3+nmu1 (low; bug #723717)




More information about the Secure-testing-commits mailing list