[Git][security-tracker-team/security-tracker][master] libraw no-dsa / n/a

Moritz Muehlenhoff jmm at debian.org
Tue Jul 31 10:31:24 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2f81122e by Moritz Muehlenhoff at 2018-07-31T09:30:55Z
libraw no-dsa / n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -24115,12 +24115,14 @@ CVE-2018-5817
 	RESERVED
 CVE-2018-5816 [Integer overflow in internal/dcraw_common.cpp:identify() allows for denial of service]
 	RESERVED
-	- libraw 0.18.13-1
+	- libraw 0.18.13-1 (low)
+	[stretch] - libraw <not-affected> (Fix for CVE-5804 not released in stretch)
 	NOTE: http://seclists.org/bugtraq/2018/Jul/58
 	NOTE: Issue caused by an incomplete fix for CVE-2018-5804
 CVE-2018-5815 [Integer overflow in internal/dcraw_common.cpp:parse_qt() allows for denial of service]
 	RESERVED
-	- libraw 0.18.13-1
+	- libraw 0.18.13-1 (low)
+	[stretch] - libraw <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/bugtraq/2018/Jul/58
 CVE-2018-5814 (In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and ...)
 	{DLA-1423-1 DLA-1422-1}
@@ -24130,7 +24132,8 @@ CVE-2018-5814 (In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and
 	NOTE: https://git.kernel.org/linus/c171654caa875919be3c533d3518da8be5be966e
 CVE-2018-5813 [infinite loop in the parse_minolta function in dcraw/dcraw.c]
 	RESERVED
-	- libraw 0.18.11-1
+	- libraw 0.18.11-1 (low)
+	[stretch] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-13/
 CVE-2018-5812
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2f81122e2d79e40d3a626026242f54f659897044

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2f81122e2d79e40d3a626026242f54f659897044
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180731/5547c460/attachment.html>

More information about the debian-security-tracker-commits mailing list