[Git][security-tracker-team/security-tracker][master] Two libgit2 issues fixed with exerpimental upload

Sat May 12 12:22:24 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7aab60f1 by Salvatore Bonaccorso at 2018-05-12T13:21:11+02:00
Two libgit2 issues fixed with exerpimental upload

Fixes are included in 0.27.0 upstream.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -6907,11 +6907,13 @@ CVE-2018-8100 (The JPXStream::readTilePart function in JPXStream.cc in xpdf 4.00
 	NOTE: src:xpdf switched to use system poppler libary in 3.02-3
 	NOTE: Reproducer correctly detected as broken with jessie's poppler build
 CVE-2018-8099 (Incorrect returning of an error code in the index.c:read_entry() ...)
+	[experimental] - libgit2 0.27.0+dfsg.1-0.1
 	- libgit2 <unfixed> (low; bug #892962)
 	[stretch] - libgit2 <no-dsa> (Minor issue)
 	[jessie] - libgit2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/libgit2/libgit2/commit/58a6fe94cb851f71214dbefac3f9bffee437d6fe
 CVE-2018-8098 (Integer overflow in the index.c:read_entry() function while ...)
+	[experimental] - libgit2 0.27.0+dfsg.1-0.1
 	- libgit2 <unfixed> (low; bug #892961)
 	[stretch] - libgit2 <no-dsa> (Minor issue)
 	[jessie] - libgit2 <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7aab60f135dc0472bc480e875f0dbb989d05e370

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7aab60f135dc0472bc480e875f0dbb989d05e370
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180512/93b7e2fd/attachment.html>
