[Secure-testing-commits] r54657 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sat Aug 12 00:37:14 UTC 2017


Author: jmm
Date: 2017-08-12 00:37:14 +0000 (Sat, 12 Aug 2017)
New Revision: 54657

Modified:
   data/CVE/list
Log:
openjpeg2 NMUed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-12 00:23:26 UTC (rev 54656)
+++ data/CVE/list	2017-08-12 00:37:14 UTC (rev 54657)
@@ -37033,7 +37033,7 @@
 	- moin 1.9.9-1 (bug #844338)
 	NOTE: Fixed by: http://hg.moinmo.in/moin/1.9/rev/3bddf075fdbd
 CVE-2016-9118 (Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of ...)
-	- openjpeg2 <unfixed> (bug #844557)
+	- openjpeg2 2.1.2-1.2 (bug #844557)
 	NOTE: https://github.com/uclouvain/openjpeg/issues/861
 	NOTE: https://github.com/uclouvain/openjpeg/commit/c22cbd8bdf8ff2ae372f94391a4be2d322b36b41
 CVE-2016-9117 (NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in ...)
@@ -37057,7 +37057,7 @@
 	NOTE: https://github.com/uclouvain/openjpeg/issues/856
 	NOTE: No code injection, function only exposed in the CLI tool
 CVE-2016-9112 (Floating Point Exception (aka FPE or divide by zero) in ...)
-	- openjpeg2 <unfixed> (bug #844551)
+	- openjpeg2 2.1.2-1.2 (bug #844551)
 	[stretch] - openjpeg2 <no-dsa> (Minor issue)
 	[jessie] - openjpeg2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/uclouvain/openjpeg/commit/d27ccf01c68a31ad62b33d2dc1ba2bb1eeaafe7b	
@@ -50475,7 +50475,7 @@
 	[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
 CVE-2016-5152 (Integer overflow in the opj_tcd_get_decoded_tile_size function in ...)
 	{DSA-3660-1}
-	- openjpeg2 <unfixed>
+	- openjpeg2 2.1.2-1.2
 	- chromium-browser 53.0.2785.89-1
 	[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
 	NOTE: https://github.com/uclouvain/openjpeg/commit/3fbe71369019df0b47c7a2be4fab8c05768f2f32	
@@ -61799,7 +61799,7 @@
 	- openjpeg <removed>
 	[jessie] - openjpeg <not-affected> (Vulnerable code introduced later)
 	[wheezy] - openjpeg <not-affected> (Vulnerable code introduced later)
-	- openjpeg2 <unfixed>
+	- openjpeg2 2.1.2-1.2
 	- chromium-browser 48.0.2564.116-1
 	[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
 	[squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze LTS)
@@ -61816,7 +61816,7 @@
 	- openjpeg <removed>
 	[jessie] - openjpeg <not-affected> (Vulnerable code introduced later)
 	[wheezy] - openjpeg <not-affected> (Vulnerable code introduced later)
-	- openjpeg2 <unfixed>
+	- openjpeg2 2.1.2-1.2
 	- chromium-browser 48.0.2564.116-1
 	[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
 	[squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze LTS)




More information about the Secure-testing-commits mailing list