[Secure-testing-commits] r47527 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Dec 28 18:19:29 UTC 2016
Author: jmm
Date: 2016-12-28 18:19:29 +0000 (Wed, 28 Dec 2016)
New Revision: 47527
Modified:
data/CVE/list
Log:
eye3d, flashrom unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-28 18:09:05 UTC (rev 47526)
+++ data/CVE/list 2016-12-28 18:19:29 UTC (rev 47527)
@@ -32392,10 +32392,10 @@
NOTE: http://www.postgresql.org/about/news/1656/
NOTE: http://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=bf78a6f107949fdfb513d1b45e30cefe04e09e4f
CVE-2016-XXXX [fscanf format string security bug in flashrom layout code]
- - flashrom 0.9.9+r1954-1
- [jessie] - flashrom <no-dsa> (Minor issue)
+ - flashrom 0.9.9+r1954-1 (unimportant)
[wheezy] - flashrom <no-dsa> (Minor issue)
NOTE: https://www.flashrom.org/pipermail/flashrom/2016-March/014523.html
+ NOTE: Neutralised by hardening
CVE-2016-3183 [Out-Of-Bounds Read in sycc422_to_rgb function]
RESERVED
- openjpeg2 2.1.1-1 (low; bug #818399)
@@ -88725,12 +88725,11 @@
[squeeze] - 9base <no-dsa> (Minor issue)
NOTE: Not exploitable with kernel hardening since wheezy
CVE-2014-1934 (tag.py in eyeD3 (aka python-eyed3) 7.0.3, 0.6.18, and earlier for ...)
- - eyed3 0.6.18-3 (low; bug #737062)
- [jessie] - eyed3 <no-dsa> (Minor issue)
+ - eyed3 0.6.18-3 (unimportant; bug #737062)
[squeeze] - eyed3 <no-dsa> (Minor issue)
- [wheezy] - eyed3 <no-dsa> (Minor issue)
NOTE: Upstream patch: https://bitbucket.org/nicfit/eyed3/commits/372bbacb7a70
NOTE: https://bitbucket.org/nicfit/eyed3/issue/65/tagpy-in-eyed3-allows-local-users-to
+ NOTE: Neutralised by kernel temp hardening
CVE-2014-1933 (The (1) JpegImagePlugin.py and (2) EpsImagePlugin.py scripts in Python ...)
- pillow 2.4.0-1 (low; bug #737059)
- python-imaging <removed>
More information about the Secure-testing-commits
mailing list