[Secure-testing-commits] r56043 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Sep 23 09:26:10 UTC 2017
Author: carnil
Date: 2017-09-23 09:26:10 +0000 (Sat, 23 Sep 2017)
New Revision: 56043
Modified:
data/CVE/list
Log:
Revert "Add CVE-2016-911[3-7]/openjpeg2 fixed version in unstable"
Revert this commit for now as per previous commit for one openjpeg2
issue. Clarifying with maintainer where are the fixing commit for those
issues.
This reverts commit 5a6f7c335479d02fb32877b4c9de433a1ac0a3ea.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-23 09:24:39 UTC (rev 56042)
+++ data/CVE/list 2017-09-23 09:26:10 UTC (rev 56043)
@@ -43083,23 +43083,23 @@
NOTE: https://github.com/uclouvain/openjpeg/issues/861
NOTE: https://github.com/uclouvain/openjpeg/commit/c22cbd8bdf8ff2ae372f94391a4be2d322b36b41
CVE-2016-9117 (NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in ...)
- - openjpeg2 2.2.0-1 (unimportant; bug #844556)
+ - openjpeg2 <unfixed> (unimportant; bug #844556)
NOTE: https://github.com/uclouvain/openjpeg/issues/860
NOTE: No code injection, function only exposed in the CLI tool
CVE-2016-9116 (NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) in ...)
- - openjpeg2 2.2.0-1 (unimportant; bug #844555)
+ - openjpeg2 <unfixed> (unimportant; bug #844555)
NOTE: https://github.com/uclouvain/openjpeg/issues/859
NOTE: No code injection, function only exposed in the CLI tool
CVE-2016-9115 (Heap Buffer Over-read in function imagetotga of convert.c(jp2):942 in ...)
- - openjpeg2 2.2.0-1 (unimportant; bug #844554)
+ - openjpeg2 <unfixed> (unimportant; bug #844554)
NOTE: https://github.com/uclouvain/openjpeg/issues/858
NOTE: No code injection, function only exposed in the CLI tool
CVE-2016-9114 (There is a NULL Pointer Access in function imagetopnm of ...)
- - openjpeg2 2.2.0-1 (unimportant; bug #844553)
+ - openjpeg2 <unfixed> (unimportant; bug #844553)
NOTE: https://github.com/uclouvain/openjpeg/issues/857
NOTE: No code injection, function only exposed in the CLI tool
CVE-2016-9113 (There is a NULL pointer dereference in function imagetobmp of ...)
- - openjpeg2 2.2.0-1 (unimportant; bug #844552)
+ - openjpeg2 <unfixed> (unimportant; bug #844552)
NOTE: https://github.com/uclouvain/openjpeg/issues/856
NOTE: No code injection, function only exposed in the CLI tool
CVE-2016-9112 (Floating Point Exception (aka FPE or divide by zero) in ...)
More information about the Secure-testing-commits
mailing list