[Git][security-tracker-team/security-tracker][master] four vague reports against libsixel

Moritz Muehlenhoff jmm at debian.org
Wed Jan 16 22:24:59 GMT 2019 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7fb73e7a by Moritz Muehlenhoff at 2019-01-16T22:24:26Z
four vague reports against libsixel

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12917,11 +12917,11 @@ CVE-2018-19765 (Cross Site Scripting exists in InfoVista VistaPortal SE Version
 CVE-2018-19764
 	REJECTED
 CVE-2018-19763 (There is a heap-based buffer over-read at writer.c (function: ...)
-	TODO: check
+	- libsixel <undetermined>
 CVE-2018-19762 (There is a heap-based buffer overflow at fromsixel.c (function: ...)
-	TODO: check
+	- libsixel <undetermined>
 CVE-2018-19761 (There is an illegal address access at fromsixel.c (function: ...)
-	TODO: check
+	- libsixel <undetermined>
 CVE-2018-19760 (cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak. ...)
 	- confuse <unfixed> (unimportant)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1649152
@@ -12939,7 +12939,7 @@ CVE-2018-19758 (There is a heap-based buffer over-read at wav.c in wav_write_hea
 	NOTE: https://github.com/erikd/libsndfile/issues/435
 	NOTE: https://github.com/erikd/libsndfile/commit/42132c543358cee9f7c3e9e9b15bb6c1063a608e
 CVE-2018-19757 (There is a NULL pointer dereference at function ...)
-	TODO: check
+	- libsixel <undetermined>
 CVE-2018-19756 (There is a heap-based buffer over-read at stb_image.h (function: ...)
 	TODO: check
 CVE-2018-19755 (There is an illegal address access at asm/preproc.c (function: ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7fb73e7aa61fd46c91cf25019d2c6150ba7d6a4c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7fb73e7aa61fd46c91cf25019d2c6150ba7d6a4c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190116/0eb8b9d6/attachment.html>

More information about the debian-security-tracker-commits mailing list