[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Record fixed version for sdl-image1.2 issues via unstable

Salvatore Bonaccorso carnil at debian.org
Thu Apr 12 22:00:45 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5380d2f4 by Salvatore Bonaccorso at 2018-04-12T23:00:16+02:00
Record fixed version for sdl-image1.2 issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -16139,19 +16139,19 @@ CVE-2018-3840
 	RESERVED
 CVE-2018-3839 (An exploitable code execution vulnerability exists in the eCF image ...)
 	- libsdl2-image 2.0.3+dfsg1-1
-	- sdl-image1.2 <unfixed>
+	- sdl-image1.2 1.2.12-8
 	NOTE: https://hg.libsdl.org/SDL_image/rev/fb643e371806910f1973abfdfe7f981e8dba60f5
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0521
 	TODO: check fixing commit(s)
 CVE-2018-3838 (An exploitable information vulnerability exists in the XCF image ...)
 	- libsdl2-image 2.0.3+dfsg1-1
-	- sdl-image1.2 <unfixed>
+	- sdl-image1.2 1.2.12-8
 	NOTE: https://hg.libsdl.org/SDL_image/rev/c5f9cbb5d2bbcb2150ba0596ea56b49efeed660d
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0520
 	TODO: check fixing commit(s)
 CVE-2018-3837 (An exploitable information disclosure vulnerability exists in the PCX ...)
 	- libsdl2-image 2.0.3+dfsg1-1
-	- sdl-image1.2 <unfixed>
+	- sdl-image1.2 1.2.12-8
 	NOTE: https://hg.libsdl.org/SDL_image/rev/2938fc80591abeae74b971cbdf966eff3213297e
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0519
 	TODO: check fixing commit(s)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5380d2f4d185b6f0bab85a2bb750441b084549c6

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5380d2f4d185b6f0bab85a2bb750441b084549c6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180412/0ba510c3/attachment.html>

More information about the debian-security-tracker-commits mailing list