[Secure-testing-commits] r54855 - in data: . CVE

Ola Lundqvist opal at moszumanska.debian.org
Fri Aug 18 18:19:21 UTC 2017 

Author: opal
Date: 2017-08-18 18:19:21 +0000 (Fri, 18 Aug 2017)
New Revision: 54855

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
Follow jessie.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-18 15:19:51 UTC (rev 54854)
+++ data/CVE/list	2017-08-18 18:19:21 UTC (rev 54855)
@@ -2,21 +2,25 @@
 	- unrar-nonfree <unfixed>
 	[stretch] - unrar-nonfree <no-dsa> (Non-free not supported)	
 	[jessie] - unrar-nonfree <no-dsa> (Non-free not supported)
+	[wheezy] - unrar-nonfree <no-dsa> (Non-free not supported)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/08/18/6
 CVE-2017-12941 [out-of-bounds read in the Unpack::Unpack20 function]
 	- unrar-nonfree <unfixed>
 	[stretch] - unrar-nonfree <no-dsa> (Non-free not supported)	
 	[jessie] - unrar-nonfree <no-dsa> (Non-free not supported)
+	[wheezy] - unrar-nonfree <no-dsa> (Non-free not supported)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/08/18/6
 CVE-2017-12940 [out-of-bounds read in the EncodeFileName::Decode call within the Archive::ReadHeader15 function]
 	- unrar-nonfree <unfixed>
 	[stretch] - unrar-nonfree <no-dsa> (Non-free not supported)	
 	[jessie] - unrar-nonfree <no-dsa> (Non-free not supported)
+	[wheezy] - unrar-nonfree <no-dsa> (Non-free not supported)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/08/18/6
 CVE-2017-12938 [directory traversal]
 	- unrar-nonfree <unfixed>
 	[stretch] - unrar-nonfree <no-dsa> (Non-free not supported)	
 	[jessie] - unrar-nonfree <no-dsa> (Non-free not supported)
+	[wheezy] - unrar-nonfree <no-dsa> (Non-free not supported)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/08/18/2
 CVE-2017-12937 [heap-based buffer overflow in ReadSUNImage (sun.c)]
 	- graphicsmagick <unfixed>

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2017-08-18 15:19:51 UTC (rev 54854)
+++ data/dla-needed.txt	2017-08-18 18:19:21 UTC (rev 54855)
@@ -62,6 +62,8 @@
 --
 gnupg
 --
+graphicsmagic
+--
 imagemagick (Roberto C. Sánchez)
   NOTE: 20170814, work continues patches up to CVE-2017-12587 backported
 --

More information about the Secure-testing-commits mailing list