[Secure-testing-commits] r47750 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Jan 5 12:17:38 UTC 2017
Author: jmm
Date: 2017-01-05 12:17:38 +0000 (Thu, 05 Jan 2017)
New Revision: 47750
Modified:
data/CVE/list
Log:
fix source package, the vulnerability seems to be in jbig2dec, which is used by ghostscript these days
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-05 11:29:11 UTC (rev 47749)
+++ data/CVE/list 2017-01-05 12:17:38 UTC (rev 47750)
@@ -11310,7 +11310,7 @@
RESERVED
CVE-2016-9601 [Heap-buffer overflow due to Integer overflow in jbig2_image_new function]
RESERVED
- - ghostscript <unfixed>
+ - jbig2dec <unfixed>
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697457
CVE-2016-9600 [Null Pointer Dereference due to missing check for UNKNOWN color space in JP2 encoder]
RESERVED
More information about the Secure-testing-commits
mailing list