[Git][security-tracker-team/security-tracker][master] CVE-2018-2054{4,5,6,7,8,9}/libcaca fixed in unstable upload
Salvatore Bonaccorso
carnil at debian.org
Tue Apr 9 07:03:55 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
28891f22 by Salvatore Bonaccorso at 2019-04-09T06:02:50Z
CVE-2018-2054{4,5,6,7,8,9}/libcaca fixed in unstable upload
Needs to be checked if there is not incomplete fix as the upstream
patches have seen some iterations, that is double check if every of the
issues is fixed completely.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18877,13 +18877,13 @@ CVE-2018-20550
RESERVED
CVE-2018-20549 (There is an illegal WRITE memory access at caca/file.c (function caca_ ...)
{DLA-1631-1}
- - libcaca <unfixed> (low; bug #917807)
+ - libcaca 0.99.beta19-2.1 (low; bug #917807)
[stretch] - libcaca <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652628
NOTE: https://github.com/cacalabs/libcaca/issues/41
NOTE: Fixed by: https://github.com/cacalabs/libcaca/commit/3e52dabe3e64dc50f4422effe364a1457a8a8592
CVE-2018-20548 (There is an illegal WRITE memory access at common-image.c (function lo ...)
- - libcaca <unfixed> (unimportant; bug #917807)
+ - libcaca 0.99.beta19-2.1 (unimportant; bug #917807)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652625
NOTE: https://github.com/cacalabs/libcaca/issues/40
NOTE: Upstream fix: https://github.com/cacalabs/libcaca/commit/f6c61faa26b3e150c3daf514589afa737f42f152
@@ -18891,20 +18891,20 @@ CVE-2018-20548 (There is an illegal WRITE memory access at common-image.c (funct
NOTE: Debian binary packages built with the Imlib2 library
CVE-2018-20547 (There is an illegal READ memory access at caca/dither.c (function get_ ...)
{DLA-1631-1}
- - libcaca <unfixed> (low; bug #917807)
+ - libcaca 0.99.beta19-2.1 (low; bug #917807)
[stretch] - libcaca <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652624
NOTE: https://github.com/cacalabs/libcaca/issues/39
NOTE: Fixed by: https://github.com/cacalabs/libcaca/commit/02a09ec9e5ed8981e7a810bfb6a0172dc24f0790
CVE-2018-20546 (There is an illegal READ memory access at caca/dither.c (function get_ ...)
{DLA-1631-1}
- - libcaca <unfixed> (low; bug #917807)
+ - libcaca 0.99.beta19-2.1 (low; bug #917807)
[stretch] - libcaca <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652622
NOTE: https://github.com/cacalabs/libcaca/issues/38
NOTE: Fixed by: https://github.com/cacalabs/libcaca/commit/02a09ec9e5ed8981e7a810bfb6a0172dc24f0790
CVE-2018-20545 (There is an illegal WRITE memory access at common-image.c (function lo ...)
- - libcaca <unfixed> (unimportant; bug #917807)
+ - libcaca 0.99.beta19-2.1 (unimportant; bug #917807)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652621
NOTE: https://github.com/cacalabs/libcaca/issues/37
NOTE: Upstream fix: https://github.com/cacalabs/libcaca/commit/f6c61faa26b3e150c3daf514589afa737f42f152
@@ -18912,7 +18912,7 @@ CVE-2018-20545 (There is an illegal WRITE memory access at common-image.c (funct
NOTE: Debian binary packages built with the Imlib2 library
CVE-2018-20544 (There is floating point exception at caca/dither.c (function caca_dith ...)
{DLA-1631-1}
- - libcaca <unfixed> (low; bug #917807)
+ - libcaca 0.99.beta19-2.1 (low; bug #917807)
[stretch] - libcaca <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652627
NOTE: https://github.com/cacalabs/libcaca/issues/36
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/28891f228bdd9e266524c0f98c03e3ef3055c159
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/28891f228bdd9e266524c0f98c03e3ef3055c159
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190409/152a5c82/attachment.html>
More information about the debian-security-tracker-commits
mailing list