[Git][security-tracker-team/security-tracker][master] libgd2 spu

Moritz Muehlenhoff jmm at debian.org
Fri Oct 5 21:56:32 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d1192567 by Moritz Muehlenhoff at 2018-10-05T20:56:11Z
libgd2 spu

- - - - -


2 changed files:

- data/CVE/list
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -5703,7 +5703,7 @@ CVE-2018-1000224 (Godot Engine version All versions prior to 2.1.5, all 3.0 vers
 	NOT-FOR-US: Godot
 CVE-2018-1000222 (Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability ...)
 	- libgd2 <unfixed> (low; bug #906886)
-	[stretch] - libgd2 <postponed> (Minor issue)
+	[stretch] - libgd2 <no-dsa> (Minor issue, will be fixed via point release)
 	[jessie] - libgd2 <postponed> (Minor issue)
 	NOTE: https://github.com/libgd/libgd/issues/447
 	NOTE: https://github.com/libgd/libgd/commit/ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5
@@ -32803,7 +32803,7 @@ CVE-2018-5711 (gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PH
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=75571
 	NOTE: https://hhvm.com/blog/2018/05/04/hhvm-3.25.3.html
 	- libgd2 <unfixed> (bug #887485)
-	[stretch] - libgd2 <postponed> (Minor issue, can be fixed along in a future update)
+	[stretch] - libgd2 <no-dsa> (Minor issue, will be fixed via point release)
 	[jessie] - libgd2 <postponed> (Minor issue, can be fixed along in a future update)
 	NOTE: https://github.com/libgd/libgd/issues/420
 	NOTE: https://github.com/libgd/libgd/commit/a11f47475e6443b7f32d21f2271f28f417e2ac04


=====================================
data/next-point-update.txt
=====================================
@@ -84,3 +84,7 @@ CVE-2018-16426
 	[stretch] - opensc 0.16.0-3+deb9u1
 CVE-2018-16427
 	[stretch] - opensc 0.16.0-3+deb9u1
+CVE-2018-5711
+	[stretch] - libgd2 2.2.4-2+deb9u3
+CVE-2018-1000222
+	[stretch] - libgd2 2.2.4-2+deb9u3



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d1192567e37be40fa5ccb9c8897b83715172d8bf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d1192567e37be40fa5ccb9c8897b83715172d8bf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181005/5936086d/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list