[Secure-testing-commits] r59004 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 28 20:19:58 UTC 2017
Author: carnil
Date: 2017-12-28 20:19:58 +0000 (Thu, 28 Dec 2017)
New Revision: 59004
Modified:
data/CVE/list
Log:
Add fixing version for two libextractor issues for upload to unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-28 20:10:17 UTC (rev 59003)
+++ data/CVE/list 2017-12-28 20:19:58 UTC (rev 59004)
@@ -6336,7 +6336,7 @@
NOTE: Patch: https://bitbucket.org/mpyne/game-music-emu/commits/205290614cdc057541b26adeea05a9d45993f860
NOTE: Additional hardening: https://bitbucket.org/mpyne/game-music-emu/commits/4a441e94cba14268bc4e983d4dfd6ed112084d00
CVE-2017-17440 (GNU Libextractor 1.6 allows remote attackers to cause a denial of ...)
- - libextractor <unfixed> (bug #883528)
+ - libextractor 1:1.6-2 (bug #883528)
[stretch] - libextractor <no-dsa> (Minor issue)
[jessie] - libextractor <no-dsa> (Minor issue)
[wheezy] - libextractor <no-dsa> (Minor issue)
@@ -13206,7 +13206,7 @@
NOTE: https://cgit.kde.org/konversation.git/commit/?h=1.7&id=6a7f59ee1b9dbc6e5cf9e5f3b306504d02b73ef0
CVE-2017-15922 (In GNU Libextractor 1.4, there is an out-of-bounds read in the ...)
{DLA-1198-1}
- - libextractor <unfixed> (low; bug #880016)
+ - libextractor 1:1.6-2 (low; bug #880016)
[stretch] - libextractor <no-dsa> (Minor issue)
[jessie] - libextractor <no-dsa> (Minor issue)
NOTE: http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00008.html
More information about the Secure-testing-commits
mailing list