[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] mark CVEs for cimg as no-dsa

Thorsten Alteholz alteholz at debian.org
Wed Mar 14 15:04:28 UTC 2018 

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
772211e3 by Thorsten Alteholz at 2018-03-14T16:04:46+01:00
mark CVEs for cimg as no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1221,30 +1221,35 @@ CVE-2018-7641 (An issue was discovered in CImg v.220. A heap-based buffer over-r
 	- cimg <unfixed> (low; bug #892780)
 	[stretch] - cimg <no-dsa> (Minor issue)
 	[jessie] - cimg <no-dsa> (Minor issue)
+	[wheezy] - cimg <no-dsa> (Minor issue)
 	NOTE: https://github.com/dtschump/CImg/issues/185
 	NOTE: https://github.com/dtschump/CImg/commit/10af1e8c1ad2a58a0a3342a856bae63e8f257abb
 CVE-2018-7640 (An issue was discovered in CImg v.220. A heap-based buffer over-read in ...)
 	- cimg <unfixed> (low; bug #892780)
 	[stretch] - cimg <no-dsa> (Minor issue)
 	[jessie] - cimg <no-dsa> (Minor issue)
+	[wheezy] - cimg <no-dsa> (Minor issue)
 	NOTE: https://github.com/dtschump/CImg/issues/185
 	NOTE: https://github.com/dtschump/CImg/commit/10af1e8c1ad2a58a0a3342a856bae63e8f257abb
 CVE-2018-7639 (An issue was discovered in CImg v.220. A heap-based buffer over-read in ...)
 	- cimg <unfixed> (low; bug #892780)
 	[stretch] - cimg <no-dsa> (Minor issue)
 	[jessie] - cimg <no-dsa> (Minor issue)
+	[wheezy] - cimg <no-dsa> (Minor issue)
 	NOTE: https://github.com/dtschump/CImg/issues/185
 	NOTE: https://github.com/dtschump/CImg/commit/10af1e8c1ad2a58a0a3342a856bae63e8f257abb
 CVE-2018-7638 (An issue was discovered in CImg v.220. A heap-based buffer over-read in ...)
 	- cimg <unfixed> (low; bug #892780)
 	[stretch] - cimg <no-dsa> (Minor issue)
 	[jessie] - cimg <no-dsa> (Minor issue)
+	[wheezy] - cimg <no-dsa> (Minor issue)
 	NOTE: https://github.com/dtschump/CImg/issues/185
 	NOTE: https://github.com/dtschump/CImg/commit/10af1e8c1ad2a58a0a3342a856bae63e8f257abb
 CVE-2018-7637 (An issue was discovered in CImg v.220. A heap-based buffer over-read in ...)
 	- cimg <unfixed> (low; bug #892780)
 	[stretch] - cimg <no-dsa> (Minor issue)
 	[jessie] - cimg <no-dsa> (Minor issue)
+	[wheezy] - cimg <no-dsa> (Minor issue)
 	NOTE: https://github.com/dtschump/CImg/issues/185
 	NOTE: https://github.com/dtschump/CImg/commit/10af1e8c1ad2a58a0a3342a856bae63e8f257abb
 CVE-2018-7636
@@ -1345,18 +1350,21 @@ CVE-2018-7589 (An issue was discovered in CImg v.220. A double free in load_bmp 
 	- cimg <unfixed> (low; bug #892780)
 	[stretch] - cimg <no-dsa> (Minor issue)
 	[jessie] - cimg <no-dsa> (Minor issue)
+	[wheezy] - cimg <no-dsa> (Minor issue)
 	NOTE: https://github.com/dtschump/CImg/issues/184
 	NOTE: https://github.com/dtschump/CImg/commit/8447076ef22322a14a0ce130837e44c5ba8095f4
 CVE-2018-7588 (An issue was discovered in CImg v.220. A heap-based buffer over-read in ...)
 	- cimg <unfixed> (low; bug #892780)
 	[stretch] - cimg <no-dsa> (Minor issue)
 	[jessie] - cimg <no-dsa> (Minor issue)
+	[wheezy] - cimg <no-dsa> (Minor issue)
 	NOTE: https://github.com/dtschump/CImg/issues/183
 	NOTE: https://github.com/dtschump/CImg/commit/8447076ef22322a14a0ce130837e44c5ba8095f4
 CVE-2018-7587 (An issue was discovered in CImg v.220. DoS occurs when loading a ...)
 	- cimg <unfixed> (low; bug #892780)
 	[stretch] - cimg <no-dsa> (Minor issue)
 	[jessie] - cimg <no-dsa> (Minor issue)
+	[wheezy] - cimg <no-dsa> (Minor issue)
 	TODO: check, not reported upstream
 CVE-2018-7586 (In the nextgen-gallery plugin before 2.2.50 for WordPress, gallery ...)
 	NOT-FOR-US: nextgen-gallery plugin for WordPress



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/772211e3501cfd25f8da25306f979c735e6d6191

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/772211e3501cfd25f8da25306f979c735e6d6191
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180314/0153e7a5/attachment.html>

More information about the Secure-testing-commits mailing list