[Secure-testing-commits] r44146 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Aug 25 19:32:18 UTC 2016
Author: carnil
Date: 2016-08-25 19:32:17 +0000 (Thu, 25 Aug 2016)
New Revision: 44146
Modified:
data/CVE/list
Log:
Mark the <unfixed> entries for src:openjpeg as removed
Keep for now the <undetermined> ones as such, since those issues are not
investigated and might be <not-affected>.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-25 19:29:10 UTC (rev 44145)
+++ data/CVE/list 2016-08-25 19:32:17 UTC (rev 44146)
@@ -81368,10 +81368,10 @@
[squeeze] - libvirt <not-affected> (vulnerable code not introduced, introduced in 1.1.1)
NOTE: http://libvirt.org/git/?p=libvirt.git;a=commit;h=745aa55fbf3e076c4288d5ec3239f5a5d43508a6
CVE-2013-4290 (Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote ...)
- - openjpeg <unfixed> (unimportant; bug #722540)
+ - openjpeg <removed> (unimportant; bug #722540)
NOTE: JP3D code not built in the binary package, see #722540
CVE-2013-4289 (Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before ...)
- - openjpeg <unfixed> (unimportant; bug #722540)
+ - openjpeg <removed> (unimportant; bug #722540)
NOTE: JP3D code not built in the binary package, see #722540
CVE-2013-4288 (Race condition in PolicyKit (aka polkit) allows local users to bypass ...)
- policykit-1 0.105-3+nmu1 (low; bug #723717)
More information about the Secure-testing-commits
mailing list