[Git][security-tracker-team/security-tracker][master] CVE-2018-20364 CVE-2018-20365 are not-affected too for jessie

Abhijith PA gitlab at salsa.debian.org
Tue Jan 15 05:58:27 GMT 2019 

Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dfe757c6 by Abhijith PA at 2019-01-15T05:56:25Z
CVE-2018-20364 CVE-2018-20365 are not-affected too for jessie

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6864,12 +6864,14 @@ CVE-2018-20366
 	RESERVED
 CVE-2018-20365 (LibRaw::raw2image() in libraw_cxx.cpp has a heap-based buffer overflow. ...)
 	- libraw 0.19.2-2 (bug #917111)
+	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/LibRaw/LibRaw/issues/195
 	NOTE: Fixed by: https://github.com/LibRaw/LibRaw/commit/7e29b9f29449fde30cc878fbb137d61c14bba3a4
 	NOTE: Additionally needed: https://github.com/LibRaw/LibRaw/commit/a7c17cb6bbec1e79f058d84511f9c3b142cbdfa7
 	NOTE: CVE-2018-20363, CVE-2018-20364 and CVE-2018-20365 have same root cause
 CVE-2018-20364 (LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL ...)
 	- libraw 0.19.2-2 (bug #917112)
+	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/LibRaw/LibRaw/issues/194
 	NOTE: Fixed by: https://github.com/LibRaw/LibRaw/commit/7e29b9f29449fde30cc878fbb137d61c14bba3a4
 	NOTE: Additionally needed: https://github.com/LibRaw/LibRaw/commit/a7c17cb6bbec1e79f058d84511f9c3b142cbdfa7



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dfe757c60089fa1cb4133770caf01f4a76e3a83a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dfe757c60089fa1cb4133770caf01f4a76e3a83a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190115/d678fe42/attachment.html>

More information about the debian-security-tracker-commits mailing list