[Git][security-tracker-team/security-tracker][master] new libjpeg issue (might be n/a, needs further checks)

Moritz Muehlenhoff jmm at debian.org
Fri Dec 7 07:57:03 GMT 2018


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d800d03e by Moritz Muehlenhoff at 2018-12-07T07:56:28Z
new libjpeg issue (might be n/a, needs further checks)

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -643,7 +643,8 @@ CVE-2018-19665 [bt: Integer overflow in Bluetooth routines allows memory corrupt
 	- qemu-kvm <removed>
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg03570.html
 CVE-2018-19664 (libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the ...)
-	TODO: check
+	- libjpeg-turbo <unfixed>
+	NOTE: https://github.com/libjpeg-turbo/libjpeg-turbo/issues/305
 CVE-2018-19663
 	RESERVED
 CVE-2018-19662 (An issue was discovered in libsndfile 1.0.28. There is a buffer ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d800d03e6790cd1aed788945e153c1dd7be6d38a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d800d03e6790cd1aed788945e153c1dd7be6d38a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181207/add81a39/attachment.html>


More information about the debian-security-tracker-commits mailing list