[Git][security-tracker-team/security-tracker][master] Remove tracking for src:agg for CVE-2019-6247

Salvatore Bonaccorso carnil at debian.org
Fri Feb 1 07:19:18 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
764fae62 by Salvatore Bonaccorso at 2019-02-01T07:18:24Z
Remove tracking for src:agg for CVE-2019-6247

The issue is only in  svgg which does call the AGG-API in incorrect way,
and there is no issue in src:agg itself for CVE-2019-6247.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2427,9 +2427,9 @@ CVE-2019-6250 (A pointer overflow, with code execution, was discovered in ZeroMQ
 CVE-2019-6248 (PHP Scripts Mall Citysearch / Hotfrog / Gelbeseiten Clone Script 2.0.1 ...)
 	NOT-FOR-US: PHP Scripts Mall Citysearch / Hotfrog / Gelbeseiten Clone Script
 CVE-2019-6247 (An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in ...)
-	- agg <unfixed> (bug #919322)
 	- svgpp <unfixed> (bug #919321)
 	NOTE: https://github.com/svgpp/svgpp/issues/70
+	NOTE: Issue only in src:svgpp which does not call the AGG-API in correct way.
 CVE-2019-6246 (An issue was discovered in SVG++ (aka svgpp) 1.2.3. After calling the ...)
 	- svgpp 1.2.3+dfsg1-5 (bug #919321)
 	NOTE: https://github.com/svgpp/svgpp/issues/70



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/764fae626ebfbb43e8ce65a77beb7be03babec1c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/764fae626ebfbb43e8ce65a77beb7be03babec1c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190201/db59f4c7/attachment.html>


More information about the debian-security-tracker-commits mailing list