[Git][security-tracker-team/security-tracker][master] faad2 fixed

Moritz Muehlenhoff jmm at debian.org
Thu Apr 18 15:25:15 BST 2019



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9e2b8d3f by Moritz Muehlenhoff at 2019-04-18T14:24:53Z
faad2 fixed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20222,8 +20222,7 @@ CVE-2018-20363 (LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL
 	NOTE: Additionally needed: https://github.com/LibRaw/LibRaw/commit/a7c17cb6bbec1e79f058d84511f9c3b142cbdfa7
 	NOTE: CVE-2018-20363, CVE-2018-20364 and CVE-2018-20365 have same root cause
 CVE-2018-20362 (A NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...)
-	- faad2 <unfixed> (low)
-	[buster] - faad2 <no-dsa> (Minor issue)
+	- faad2 2.8.8-2 (low)
 	[stretch] - faad2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/knik0/faad2/issues/26
 	NOTE: https://github.com/knik0/faad2/commit/466b01d504d7e45
@@ -20848,7 +20847,7 @@ CVE-2018-20195 (A NULL pointer dereference was discovered in ic_predict of libfa
 	[stretch] - faad2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/knik0/faad2/issues/25
 CVE-2018-20194 (There is a stack-based buffer underflow in the third instance of the c ...)
-	- faad2 <unfixed>
+	- faad2 2.8.8-2
 	NOTE: https://github.com/knik0/faad2/issues/21
 	NOTE: https://github.com/knik0/faad2/commit/6b4a7cde30f2e2c
 CVE-2018-20193 (Certain Secure Access SA Series SSL VPN products (originally developed ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9e2b8d3f4430ae71a991704a3b12d56113dbb3b5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9e2b8d3f4430ae71a991704a3b12d56113dbb3b5
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190418/6e9e7e1a/attachment.html>


More information about the debian-security-tracker-commits mailing list