[Secure-testing-commits] r51692 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed May 17 09:10:47 UTC 2017
Author: carnil
Date: 2017-05-17 09:10:47 +0000 (Wed, 17 May 2017)
New Revision: 51692
Modified:
data/CVE/list
Log:
Add fixing version for jbig2dec in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-17 09:10:19 UTC (rev 51691)
+++ data/CVE/list 2017-05-17 09:10:47 UTC (rev 51692)
@@ -2564,12 +2564,12 @@
RESERVED
CVE-2017-7976 (Artifex jbig2dec 0.13 allows out-of-bounds writes and reads because of ...)
{DLA-942-1}
- - jbig2dec <unfixed> (bug #860787)
+ - jbig2dec 0.13-4.1 (bug #860787)
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697683
NOTE: Fixed by: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=ed6c5133a1004ce8d
CVE-2017-7975 (Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds ...)
{DLA-942-1}
- - jbig2dec <unfixed> (bug #860788)
+ - jbig2dec 0.13-4.1 (bug #860788)
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697693
NOTE: Fixed by: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=5e57e483298dae8b
CVE-2017-7974
@@ -2922,7 +2922,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2017/05/10/6
CVE-2017-7885 (Artifex jbig2dec 0.13 has a heap-based buffer over-read leading to ...)
{DLA-942-1}
- - jbig2dec <unfixed> (bug #860460)
+ - jbig2dec 0.13-4.1 (bug #860460)
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697703
NOTE: Fixed by: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=b184e783702246e15
CVE-2017-7884
More information about the Secure-testing-commits
mailing list