[Git][security-tracker-team/security-tracker][master] Add fixed version for two dcraw CVEs
Salvatore Bonaccorso
carnil at debian.org
Tue Jul 31 14:35:19 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
56462a37 by Salvatore Bonaccorso at 2018-07-31T13:06:34Z
Add fixed version for two dcraw CVEs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -122944,7 +122944,7 @@ CVE-2015-8366 [Index overflow in smal_decode_segment]
[jessie] - libraw 0.16.0-9+deb8u2
[wheezy] - libraw <not-affected> (Vulnerable code not present)
[squeeze] - libraw <not-affected> (Vulnerable code not present)
- - dcraw <unfixed> (bug #864168)
+ - dcraw 9.28-1 (bug #864168)
[stretch] - dcraw <no-dsa> (Minor issue)
[jessie] - dcraw <no-dsa> (Minor issue)
[wheezy] - dcraw <not-affected> (Vulnerable code not present)
@@ -188985,7 +188985,7 @@ CVE-2013-1438 (Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used i
[wheezy] - libkdcraw <no-dsa> (Minor issue)
- darktable 1.2.2-2 (bug #721233)
[wheezy] - darktable 1.0.4-1+deb7u2
- - dcraw <unfixed> (unimportant; bug #721232)
+ - dcraw 9.28-1 (unimportant; bug #721232)
- ufraw 0.19.2-2 (bug #721234)
[wheezy] - ufraw <no-dsa> (end-user app)
[squeeze] - ufraw <no-dsa> (end-user app)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/56462a3720995adb534c4767aedae9d8e5f0c40d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/56462a3720995adb534c4767aedae9d8e5f0c40d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180731/b79e2187/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list