[Secure-testing-commits] r56202 - in data: . DLA
Markus Koschany
apo at moszumanska.debian.org
Wed Sep 27 19:18:30 UTC 2017
Author: apo
Date: 2017-09-27 19:18:30 +0000 (Wed, 27 Sep 2017)
New Revision: 56202
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-1116-1 for poppler
Modified: data/DLA/list
===================================================================
--- data/DLA/list 2017-09-27 18:51:33 UTC (rev 56201)
+++ data/DLA/list 2017-09-27 19:18:30 UTC (rev 56202)
@@ -1,3 +1,6 @@
+[27 Sep 2017] DLA-1116-1 poppler - security update
+ {CVE-2017-14517 CVE-2017-14519 CVE-2017-14617}
+ [wheezy] - poppler 0.18.4-6+deb7u3
[27 Sep 2017] DLA-1115-1 debsecan - update
[wheezy] - debsecan 0.4.16+nmu1+deb7u1
[26 Sep 2017] DLA-1114-1 ruby1.9.1 - security update
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-09-27 18:51:33 UTC (rev 56201)
+++ data/dla-needed.txt 2017-09-27 19:18:30 UTC (rev 56202)
@@ -104,8 +104,6 @@
NOTE: CVE-2015-7700: the problematic call to png_free_data() is present
NOTE: in wheezy but it's not clear to me where the other call to free() is.
--
-poppler (Markus Koschany)
---
qemu (Guido Günther)
NOTE: 20170831: at first glance nothing critical, can wait for further issues
--
More information about the Secure-testing-commits
mailing list