[Git][security-tracker-team/security-tracker][master] Three CVEs for apng2gif fixed via unstable upload

Salvatore Bonaccorso carnil at debian.org
Mon Oct 29 20:09:42 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f575dccf by Salvatore Bonaccorso at 2018-10-29T20:08:56Z
Three CVEs for apng2gif fixed via unstable upload

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -82817,18 +82817,18 @@ CVE-2017-6964 (dmcrypt-get-device, as shipped in the eject package of Debian and
 CVE-2017-6963
 	RESERVED
 CVE-2017-6962 (An issue was discovered in apng2gif 1.7. There is an integer overflow ...)
-	- apng2gif <unfixed> (bug #854447)
+	- apng2gif 1.8-0.1 (bug #854447)
 	[stretch] - apng2gif <no-dsa> (Minor issue; can be fixed via point release)
 	[jessie] - apng2gif <not-affected> (Vulnerable code introduced later with refactoring)
 	[wheezy] - apng2gif <not-affected> (Vulnerable code introduced later with refactoring)
 CVE-2017-6961 (An issue was discovered in apng2gif 1.7. There is improper sanitization ...)
-	- apng2gif <unfixed> (bug #854441)
+	- apng2gif 1.8-0.1 (bug #854441)
 	[stretch] - apng2gif <no-dsa> (Minor issue; can be fixed via point release)
 	[jessie] - apng2gif <not-affected> (Vulnerable code introduced later with refactoring)
 	[wheezy] - apng2gif <not-affected> (Vulnerable code introduced later with refactoring)
 CVE-2017-6960 (An issue was discovered in apng2gif 1.7. There ...)
 	{DLA-981-1}
-	- apng2gif <unfixed> (bug #854367)
+	- apng2gif 1.8-0.1 (bug #854367)
 	[stretch] - apng2gif <no-dsa> (Minor issue; can be fixed via point release)
 	[jessie] - apng2gif <no-dsa> (Minor issue; can be fixed via point release)
 CVE-2017-6959



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f575dccf406bedd80c578601d36818ac5ae061d9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f575dccf406bedd80c578601d36818ac5ae061d9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181029/a15358b2/attachment.html>

More information about the debian-security-tracker-commits mailing list