[Secure-testing-commits] r38947 - in data: . CVE DLA

Guido Guenther agx at moszumanska.debian.org
Fri Jan 15 12:25:19 UTC 2016


Author: agx
Date: 2016-01-15 12:25:19 +0000 (Fri, 15 Jan 2016)
New Revision: 38947

Modified:
   data/CVE/list
   data/DLA/list
   data/dla-needed.txt
Log:
Reserver DLA-389-1 for giflib and link to upstream fix

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-01-15 11:54:14 UTC (rev 38946)
+++ data/CVE/list	2016-01-15 12:25:19 UTC (rev 38947)
@@ -7857,6 +7857,7 @@
 	- giflib <unfixed> (bug #808704)
 	[jessie] - giflib <no-dsa> (Minor issue; only in giffix utility)
 	[wheezy] - giflib <no-dsa> (Minor issue; only in giffix utility)
+	NOTE: Upstream fix http://sourceforge.net/p/giflib/code/ci/179510be300bf11115e37528d79619b53c884a63
 CVE-2015-7554 (The _TIFFVGetField function in tif_dir.c in libtiff 4.0.6 allows ...)
 	- tiff <unfixed> (bug #809066)
 	- tiff3 <removed>

Modified: data/DLA/list
===================================================================
--- data/DLA/list	2016-01-15 11:54:14 UTC (rev 38946)
+++ data/DLA/list	2016-01-15 12:25:19 UTC (rev 38947)
@@ -1,3 +1,6 @@
+[15 Jan 2016] DLA-389-1 giflib - security update
+	{CVE-2015-7555}
+	[squeeze] - giflib 4.1.6-9+deb6u1
 [15 Jan 2016] DLA-388-1 dwarfutils - security update
 	{CVE-2015-8750}
 	[squeeze] - dwarfutils 20100214-1+deb6u1

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2016-01-15 11:54:14 UTC (rev 38946)
+++ data/dla-needed.txt	2016-01-15 12:25:19 UTC (rev 38947)
@@ -17,8 +17,6 @@
 gajim
   NOTE: _rosterSetCB in src/common/connection_handlers.py ?
 --
-giflib (Guido Günther)
---
 jasper (Ben Hutchings)
 --
 libraw




More information about the Secure-testing-commits mailing list