[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18196/leptonlib jessie and wheezy not affected
Santiago R.R.
santiago at debian.org
Sat Mar 3 15:19:13 UTC 2018
Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker
Commits:
06a9d7f0 by Santiago Ruano Rincón at 2018-03-03T16:18:08+01:00
Add CVE-2017-18196/leptonlib jessie and wheezy not affected
Signed-off-by: Santiago Ruano Rincón <santiagorr at riseup.net>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -9933,6 +9933,8 @@ CVE-2018-7441 (Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which mig
NOTE: https://lists.debian.org/debian-lts/2018/02/msg00054.html
CVE-2017-18196 (Leptonica 1.74.4 constructs unintended pathnames (containing duplicated ...)
- leptonlib 1.74.4-2 (bug #885704)
+ [jessie] - leptonlib <not-affected> (Vulnerable code not present)
+ [wheezy] - leptonlib <not-affected> (Vulnerable code not present)
CVE-2018-7440 (An issue was discovered in Leptonica through 1.75.3. The ...)
- leptonlib 1.75.3-3 (bug #891932)
[stretch] - leptonlib <not-affected> (Incomplete fix for CVE-2018-3836 not applied)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/06a9d7f00b6a4786589c0212fd14f5858567a19d
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/06a9d7f00b6a4786589c0212fd14f5858567a19d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180303/8b2c825f/attachment.html>
More information about the Secure-testing-commits
mailing list