[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark three gdk-pixbuf issues as fixed via unstable

Salvatore Bonaccorso carnil at debian.org
Sun Mar 18 07:42:12 UTC 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f8a2ae7b by Salvatore Bonaccorso at 2018-03-18T08:41:44+01:00
Mark three gdk-pixbuf issues as fixed via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -56686,7 +56686,7 @@ CVE-2017-6317 (Memory leak in the add_shader_program function in vrend_renderer.
 	- virglrenderer 0.6.0-1 (bug #858255)
 	NOTE: https://cgit.freedesktop.org/virglrenderer/commit/?id=a2f12a1b0f95b13b6f8dc3d05d7b74b4386394e4 (0.6.0)
 CVE-2017-6314 (The make_available_at_least function in io-tiff.c in gdk-pixbuf allows ...)
-	- gdk-pixbuf <unfixed> (low; bug #856448)
+	- gdk-pixbuf 2.36.11-2 (low; bug #856448)
 	[stretch] - gdk-pixbuf 2.36.5-2+deb9u2
 	[jessie] - gdk-pixbuf <ignored> (Minor issue)
 	[wheezy] - gdk-pixbuf <no-dsa> (Minor issue, can be fixed in next update)
@@ -56694,7 +56694,7 @@ CVE-2017-6314 (The make_available_at_least function in io-tiff.c in gdk-pixbuf a
 	NOTE: http://mov.sx/2017/02/21/bug-hunting-gdk-pixbuf.html
 	NOTE: Fixed by: https://git.gnome.org/browse/gdk-pixbuf/commit/?id=1e513abdb55529f888233d3c96b27352d83aad5f
 CVE-2017-6313 (Integer underflow in the load_resources function in io-icns.c in ...)
-	- gdk-pixbuf <unfixed> (low; bug #856445)
+	- gdk-pixbuf 2.36.11-2 (low; bug #856445)
 	[stretch] - gdk-pixbuf 2.36.5-2+deb9u2
 	[jessie] - gdk-pixbuf <ignored> (Minor issue)
 	[wheezy] - gdk-pixbuf <no-dsa> (Minor issue, can be fixed in next update)
@@ -56703,7 +56703,7 @@ CVE-2017-6313 (Integer underflow in the load_resources function in io-icns.c in 
 	NOTE: Fixed by: https://git.gnome.org/browse/gdk-pixbuf/commit/?id=210b16399a492d05efb209615a143920b24251f4
 	NOTE: Tests: https://git.gnome.org/browse/gdk-pixbuf/commit/?id=4cc39d479356b6b09e3d62a0f3ab424db6c266d8
 CVE-2017-6312 (Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent ...)
-	- gdk-pixbuf <unfixed> (low; bug #856444)
+	- gdk-pixbuf 2.36.11-2 (low; bug #856444)
 	[stretch] - gdk-pixbuf 2.36.5-2+deb9u2
 	[jessie] - gdk-pixbuf <ignored> (Minor issue)
 	[wheezy] - gdk-pixbuf <no-dsa> (Minor issue, can be fixed in next update)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f8a2ae7b460315d5d367f7aa5ae38a4cf5ba549b

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f8a2ae7b460315d5d367f7aa5ae38a4cf5ba549b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180318/b53c7320/attachment.html>

More information about the Secure-testing-commits mailing list