[Git][security-tracker-team/security-tracker][master] new faad2 issues
Moritz Muehlenhoff
jmm at debian.org
Tue Dec 18 09:37:55 GMT 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8749901e by Moritz Muehlenhoff at 2018-12-18T09:37:24Z
new faad2 issues
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,15 +1,24 @@
CVE-2018-20199 (A NULL pointer dereference was discovered in ifilter_bank of ...)
- TODO: check
+ - faad2 <unfixed> (low)
+ [stretch] - faad2 <no-dsa> (Minor issue)
+ NOTE: https://github.com/knik0/faad2/issues/24
CVE-2018-20198 (A NULL pointer dereference was discovered in ifilter_bank of ...)
- TODO: check
+ - faad2 <unfixed> (low)
+ [stretch] - faad2 <no-dsa> (Minor issue)
+ NOTE: https://github.com/knik0/faad2/issues/23
CVE-2018-20197 (There is a stack-based buffer underflow in the third instance of the ...)
- TODO: check
+ - faad2 <unfixed>
+ NOTE: https://github.com/knik0/faad2/issues/20
CVE-2018-20196 (There is a stack-based buffer overflow in the third instance of the ...)
- TODO: check
+ - faad2 <unfixed>
+ NOTE: https://github.com/knik0/faad2/issues/19
CVE-2018-20195 (A NULL pointer dereference was discovered in ic_predict of ...)
- TODO: check
+ - faad2 <unfixed> (low)
+ [stretch] - faad2 <no-dsa> (Minor issue)
+ NOTE: https://github.com/knik0/faad2/issues/25
CVE-2018-20194 (There is a stack-based buffer underflow in the third instance of the ...)
- TODO: check
+ - faad2 <unfixed>
+ NOTE: https://github.com/knik0/faad2/issues/21
CVE-2018-20193
RESERVED
CVE-2018-20192
=====================================
data/dsa-needed.txt
=====================================
@@ -18,6 +18,8 @@ If needed, specify the release by adding a slash after the name of the source pa
ansible
Maintainer is preparing updates
--
+faad2
+--
ghostscript
Regression updates (#915832), but likely just included in next regular update
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8749901e786a272eeccc36d952645d10bcf50a65
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8749901e786a272eeccc36d952645d10bcf50a65
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181218/c4c977af/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list