[Secure-testing-commits] r54657 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Aug 12 00:37:14 UTC 2017
Author: jmm
Date: 2017-08-12 00:37:14 +0000 (Sat, 12 Aug 2017)
New Revision: 54657
Modified:
data/CVE/list
Log:
openjpeg2 NMUed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-12 00:23:26 UTC (rev 54656)
+++ data/CVE/list 2017-08-12 00:37:14 UTC (rev 54657)
@@ -37033,7 +37033,7 @@
- moin 1.9.9-1 (bug #844338)
NOTE: Fixed by: http://hg.moinmo.in/moin/1.9/rev/3bddf075fdbd
CVE-2016-9118 (Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of ...)
- - openjpeg2 <unfixed> (bug #844557)
+ - openjpeg2 2.1.2-1.2 (bug #844557)
NOTE: https://github.com/uclouvain/openjpeg/issues/861
NOTE: https://github.com/uclouvain/openjpeg/commit/c22cbd8bdf8ff2ae372f94391a4be2d322b36b41
CVE-2016-9117 (NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in ...)
@@ -37057,7 +37057,7 @@
NOTE: https://github.com/uclouvain/openjpeg/issues/856
NOTE: No code injection, function only exposed in the CLI tool
CVE-2016-9112 (Floating Point Exception (aka FPE or divide by zero) in ...)
- - openjpeg2 <unfixed> (bug #844551)
+ - openjpeg2 2.1.2-1.2 (bug #844551)
[stretch] - openjpeg2 <no-dsa> (Minor issue)
[jessie] - openjpeg2 <no-dsa> (Minor issue)
NOTE: https://github.com/uclouvain/openjpeg/commit/d27ccf01c68a31ad62b33d2dc1ba2bb1eeaafe7b
@@ -50475,7 +50475,7 @@
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
CVE-2016-5152 (Integer overflow in the opj_tcd_get_decoded_tile_size function in ...)
{DSA-3660-1}
- - openjpeg2 <unfixed>
+ - openjpeg2 2.1.2-1.2
- chromium-browser 53.0.2785.89-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
NOTE: https://github.com/uclouvain/openjpeg/commit/3fbe71369019df0b47c7a2be4fab8c05768f2f32
@@ -61799,7 +61799,7 @@
- openjpeg <removed>
[jessie] - openjpeg <not-affected> (Vulnerable code introduced later)
[wheezy] - openjpeg <not-affected> (Vulnerable code introduced later)
- - openjpeg2 <unfixed>
+ - openjpeg2 2.1.2-1.2
- chromium-browser 48.0.2564.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
[squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze LTS)
@@ -61816,7 +61816,7 @@
- openjpeg <removed>
[jessie] - openjpeg <not-affected> (Vulnerable code introduced later)
[wheezy] - openjpeg <not-affected> (Vulnerable code introduced later)
- - openjpeg2 <unfixed>
+ - openjpeg2 2.1.2-1.2
- chromium-browser 48.0.2564.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
[squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze LTS)
More information about the Secure-testing-commits
mailing list