[Secure-testing-commits] r43195 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jul 14 15:20:15 UTC 2016
Author: carnil
Date: 2016-07-14 15:20:15 +0000 (Thu, 14 Jul 2016)
New Revision: 43195
Modified:
data/CVE/list
Log:
libgd2 issues fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-14 15:16:26 UTC (rev 43194)
+++ data/CVE/list 2016-07-14 15:20:15 UTC (rev 43195)
@@ -75,7 +75,7 @@
CVE-2016-1000010
RESERVED
CVE-2016-XXXX [Out-Of-Bounds Read in function read_image_tga of gd_tga.c]
- - libgd2 <unfixed>
+ - libgd2 2.2.2-29-g3c2b605-1
NOTE: https://github.com/libgd/libgd/issues/248
NOTE: https://github.com/libgd/libgd/pull/251
NOTE: https://github.com/libgd/libgd/commit/981060efd6415ed9a08a6aa343e6e195bf65fb47
@@ -95,7 +95,7 @@
NOTE: Fixed by: https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/13/2
CVE-2016-6214 [read out-of-bounds issue]
- - libgd2 <unfixed>
+ - libgd2 2.2.2-29-g3c2b605-1
NOTE: https://github.com/libgd/libgd/issues/247#issuecomment-232084241
NOTE: Different issue than CVE-2016-6132
NOTE: http://www.openwall.com/lists/oss-security/2016/07/13/5
@@ -848,7 +848,7 @@
RESERVED
CVE-2016-6132 [read out-of-bands was found in the parsing of TGA files]
RESERVED
- - libgd2 <unfixed> (bug #829694)
+ - libgd2 2.2.2-29-g3c2b605-1 (bug #829694)
NOTE: https://github.com/libgd/libgd/issues/247
NOTE: https://github.com/libgd/libgd/commit/10ef1dca63d62433fda13309b4a228782db823f7
CVE-2016-6131
@@ -878,7 +878,7 @@
NOTE: Fixed by: https://git.kernel.org/linus/532c34b5fbf1687df63b3fcd5b2846312ac943c6
CVE-2016-6128 [Invalid color index is not properly handled leading to denial of service]
RESERVED
- - libgd2 <unfixed> (bug #829062)
+ - libgd2 2.2.2-29-g3c2b605-1 (bug #829062)
[wheezy] - libgd2 <not-affected> (Vulnerable code not present)
NOTE: https://github.com/libgd/libgd/compare/3fe0a7128bac5000fdcfab888bd2a75ec0c9447d...fd623025505e87bba7ec8555eeb72dae4fb0afd
NOTE: Crop support introduced in https://github.com/libgd/libgd/commit/f67452e1f82f1c2496e0859d638172bee74b43a0 (gd-2.1.0-alpha1)
@@ -1368,7 +1368,7 @@
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72339
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=7722455726bec8c53458a32851d2a87982cf0eac
NOTE: Fixed in 5.5.37, 5.6.23, 7.0.8
- - libgd2 <unfixed> (bug #829014)
+ - libgd2 2.2.2-29-g3c2b605-1 (bug #829014)
NOTE: https://github.com/libgd/libgd/issues/243
NOTE: https://github.com/libgd/libgd/commit/aba3db8ba159465ecec1089027a24835a6da9cc0
CVE-2016-5741
More information about the Secure-testing-commits
mailing list