[Git][security-tracker-team/security-tracker][master] update openjpeg2 entry in data/dla-needed
Hugo Lefeuvre
hle at debian.org
Mon Oct 22 16:30:17 BST 2018
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
34d2f1c3 by Hugo Lefeuvre at 2018-10-22T15:29:45Z
update openjpeg2 entry in data/dla-needed
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
@@ -55,7 +55,9 @@ nsis
openjdk-7 (Emilio Pozuelo)
--
openjpeg2 (Hugo Lefeuvre)
- NOTE: 20180719: there is no patch available for the remaining CVEs
+ NOTE: 20181022: wrote patches for CVE-2018-5785 and CVE-2017-17480, waiting for upstream
+ NOTE: to approve CVE-2017-17480 before upload.
+ NOTE: had in depth investigations for CVE-2018-5727, see upstream bug report
--
paramiko (Thorsten Alteholz)
NOTE: 20181010: Consider fixing no-dsa issue too. (apo)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/34d2f1c3e98bb25a5fe7a3794638e22af6d9a189
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/34d2f1c3e98bb25a5fe7a3794638e22af6d9a189
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181022/519b64f5/attachment.html>
More information about the debian-security-tracker-commits
mailing list