[Secure-testing-commits] r49862 - in data: . CVE
Ola Lundqvist
opal at moszumanska.debian.org
Mon Mar 20 22:20:36 UTC 2017
Author: opal
Date: 2017-03-20 22:20:36 +0000 (Mon, 20 Mar 2017)
New Revision: 49862
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Apng2gif input.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-20 21:44:08 UTC (rev 49861)
+++ data/CVE/list 2017-03-20 22:20:36 UTC (rev 49862)
@@ -499,10 +499,13 @@
RESERVED
CVE-2017-6962 (An issue was discovered in apng2gif 1.7. There is an integer overflow ...)
- apng2gif <unfixed> (bug #854447)
+ NOTE: Reproduduction failed on wheezy, jessie and sid.
CVE-2017-6961 (An issue was discovered in apng2gif 1.7. There is improper sanitization ...)
- apng2gif <unfixed> (bug #854441)
+ NOTE: Reproduduction failed on wheezy, jessie and sid.
CVE-2017-6960 (An issue was discovered in apng2gif 1.7. There ...)
- apng2gif <unfixed> (bug #854367)
+ NOTE: Reproduced on wheezy, jessie and sid.
CVE-2017-6959
RESERVED
CVE-2017-6958 (An XSS vulnerability in the MantisBT Source Integration Plugin (before ...)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-03-20 21:44:08 UTC (rev 49861)
+++ data/dla-needed.txt 2017-03-20 22:20:36 UTC (rev 49862)
@@ -10,6 +10,8 @@
https://wiki.debian.org/LTS/Development#Triage_new_security_issues
--
+apng2gif
+--
audiofile (Ola Lundqvist)
NOTE: There are quite a few CVEs so it will take a little longer time than
NOTE: an usual update. The work progress is reported here:
More information about the Secure-testing-commits
mailing list