[Secure-testing-commits] r49820 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Mar 19 21:24:40 UTC 2017
Author: jmm
Date: 2017-03-19 21:24:40 +0000 (Sun, 19 Mar 2017)
New Revision: 49820
Modified:
data/CVE/list
Log:
remove two TODOs for firefox config of gdk-pixbuf
- it makes sense for firefox to be more stringent in the default config,
but gdk-pixbuf as a general purpose library in Debian needs to be support
a broader set of image codecs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-19 21:16:44 UTC (rev 49819)
+++ data/CVE/list 2017-03-19 21:24:40 UTC (rev 49820)
@@ -53622,11 +53622,10 @@
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-142/
CVE-2015-7217 (The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux ...)
- iceweasel <not-affected> (Iceweasel in Debian uses the system copy of gdk-pixbuf)
- TODO: Check gdk-pixbuf
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-143/
CVE-2015-7216 (The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux ...)
- iceweasel <not-affected> (Iceweasel in Debian uses the system copy of gdk-pixbuf)
- TODO: Check gdk-pixbuf
+ NOTE: Disabled in src:gdk-pixbuf in 2.31.7-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-143/
CVE-2015-7215 (The importScripts function in the Web Workers API implementation in ...)
- iceweasel <not-affected> (ESR38 series not affected)
More information about the Secure-testing-commits
mailing list