[Secure-testing-commits] r56040 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Sep 23 07:24:21 UTC 2017
Author: carnil
Date: 2017-09-23 07:24:21 +0000 (Sat, 23 Sep 2017)
New Revision: 56040
Modified:
data/CVE/list
Log:
One openjpeg2 issue fixed in 2.2.0-1
Note there were mentionings of other CVEs in debian/changelog, but those
does not seem to be fixed in 2.2.0 upstream. Asking back maintainer and
upstreeam.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-23 06:46:43 UTC (rev 56039)
+++ data/CVE/list 2017-09-23 07:24:21 UTC (rev 56040)
@@ -2512,7 +2512,7 @@
NOTE: https://github.com/uclouvain/openjpeg/issues/785
NOTE: https://github.com/uclouvain/openjpeg/issues/792
CVE-2016-10504 (Heap-based buffer overflow vulnerability in the opj_mqc_byteout ...)
- - openjpeg2 <unfixed> (bug #874113)
+ - openjpeg2 2.2.0-1 (bug #874113)
NOTE: https://github.com/uclouvain/openjpeg/commit/397f62c0a838e15d667ef50e27d5d011d2c79c04
NOTE: https://github.com/uclouvain/openjpeg/issues/835
CVE-2017-13753
More information about the Secure-testing-commits
mailing list