[Secure-testing-commits] r55435 - data/CVE

Ola Lundqvist opal at moszumanska.debian.org
Mon Sep 4 18:07:20 UTC 2017 

Author: opal
Date: 2017-09-04 18:07:19 +0000 (Mon, 04 Sep 2017)
New Revision: 55435

Modified:
   data/CVE/list
Log:
Follow jessie.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-04 17:53:41 UTC (rev 55434)
+++ data/CVE/list	2017-09-04 18:07:19 UTC (rev 55435)
@@ -2743,30 +2743,35 @@
 	- libgig <unfixed> (low; bug #873718)
 	[stretch] - libgig <no-dsa> (Minor issue)
 	[jessie] - libgig <no-dsa> (Minor issue)
+	[wheezy] - libgig <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/fulldisclosure/2017/Aug/39 (provides repoducer files)
 	TODO: check, seem fixed with 4.0.0-4
 CVE-2017-12953 (The gig::Instrument::UpdateRegionKeyTable function in gig.cpp in ...)
 	- libgig <unfixed> (low; bug #873718)
 	[stretch] - libgig <no-dsa> (Minor issue)
 	[jessie] - libgig <no-dsa> (Minor issue)
+	[wheezy] - libgig <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/fulldisclosure/2017/Aug/39 (provides repoducer files)
 	TODO: check, seem fixed with 4.0.0-4
 CVE-2017-12952 (The LoadString function in helper.h in libgig 4.0.0 allows remote ...)
 	- libgig <unfixed> (low; bug #873718)
 	[stretch] - libgig <no-dsa> (Minor issue)
 	[jessie] - libgig <no-dsa> (Minor issue)
+	[wheezy] - libgig <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/fulldisclosure/2017/Aug/39 (provides repoducer files)
 	TODO: check, seem fixed with 4.0.0-4
 CVE-2017-12951 (The gig::DimensionRegion::CreateVelocityTable function in gig.cpp in ...)
 	- libgig <unfixed> (low; bug #873718)
 	[stretch] - libgig <no-dsa> (Minor issue)
 	[jessie] - libgig <no-dsa> (Minor issue)
+	[wheezy] - libgig <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/fulldisclosure/2017/Aug/39 (provides repoducer files)
 	TODO: check, seem fixed with 4.0.0-4, but fix uncovers one more problem
 CVE-2017-12950 (The gig::Region::Region function in gig.cpp in libgig 4.0.0 allows ...)
 	- libgig <unfixed> (low; bug #873718)
 	[stretch] - libgig <no-dsa> (Minor issue)
 	[jessie] - libgig <no-dsa> (Minor issue)
+	[wheezy] - libgig <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/fulldisclosure/2017/Aug/39 (provides repoducer files)
 	TODO: check, seem fixed with 4.0.0-4
 CVE-2017-12949 (lib\modules\contributors\contributor_list_table.php in the Podlove ...)

More information about the Secure-testing-commits mailing list