[Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-3977/{libsdl2-image,sdl-image1.2}
Salvatore Bonaccorso
carnil at debian.org
Mon Nov 5 05:46:24 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
463e8d69 by Salvatore Bonaccorso at 2018-11-05T05:45:45Z
Add fixed version via unstable for CVE-2018-3977/{libsdl2-image,sdl-image1.2}
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -39847,8 +39847,8 @@ CVE-2018-3979
CVE-2018-3978 (An exploitable out-of-bounds write vulnerability exists in the Word ...)
NOT-FOR-US: Atlantis Word Processor
CVE-2018-3977 (An exploitable code execution vulnerability exists in the XCF image ...)
- - libsdl2-image <unfixed> (bug #912617)
- - sdl-image1.2 <unfixed> (bug #912618)
+ - libsdl2-image 2.0.3+dfsg1-3 (bug #912617)
+ - sdl-image1.2 1.2.12-10 (bug #912618)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2018-0645
NOTE: https://hg.libsdl.org/SDL_image/rev/170d7d32e4a8
CVE-2018-3976
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/463e8d692c6fd9825ac040b00f7540bce39a51cd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/463e8d692c6fd9825ac040b00f7540bce39a51cd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181105/35b6aa99/attachment.html>
More information about the debian-security-tracker-commits
mailing list