[Secure-testing-commits] r54699 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Aug 12 20:17:43 UTC 2017
Author: jmm
Date: 2017-08-12 20:17:42 +0000 (Sat, 12 Aug 2017)
New Revision: 54699
Modified:
data/CVE/list
Log:
mark libvpx as unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-12 20:16:08 UTC (rev 54698)
+++ data/CVE/list 2017-08-12 20:17:42 UTC (rev 54699)
@@ -34015,9 +34015,10 @@
CVE-2017-0642 (A remote denial of service vulnerability in libhevc in Mediaserver ...)
NOT-FOR-US: Android Mediaserver
CVE-2017-0641 (A remote denial of service vulnerability in libvpx in Mediaserver ...)
- - libvpx <unfixed> (bug #871931)
+ - libvpx <unfixed> (unimportant; bug #871931)
NOTE: https://android.googlesource.com/platform/external/libvpx/+/698796fc930baecf5c3fdebef17e73d5d9a58bcb
- NOTE: Debian builds configures with --size-limit=16384x16384
+ NOTE: Debian builds configures with --size-limit=16384x16384, Android lowered
+ NOTE: the limit to something more aligned for smart phones
CVE-2017-0640 (A remote denial of service vulnerability in Mediaserver could enable ...)
NOT-FOR-US: Android Mediaserver
CVE-2017-0639 (An information disclosure vulnerability in Bluetooth component could ...)
More information about the Secure-testing-commits
mailing list