[Git][security-tracker-team/security-tracker][master] exiv2: jessie triage (2)
Sylvain Beucler
beuc at debian.org
Wed Jul 3 17:15:13 BST 2019
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6b064a3c by Sylvain Beucler at 2019-07-03T16:06:09Z
exiv2: jessie triage (2)
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -197,6 +197,7 @@ CVE-2019-13110 (A CiffDirectory::readDirectory integer overflow and out-of-bound
- exiv2 <unfixed> (low)
[buster] - exiv2 <ignored> (Minor issue)
[stretch] - exiv2 <ignored> (Minor issue)
+ [jessie] - exiv2 <ignored> (Minor issue, read segfault)
NOTE: https://github.com/Exiv2/exiv2/issues/843
NOTE: https://github.com/Exiv2/exiv2/commit/9628f82084ed30d494ddd4f7360d233801e22967
CVE-2019-13109 (An integer overflow in Exiv2 through 0.27.1 allows an attacker to caus ...)
=====================================
data/dla-needed.txt
=====================================
@@ -18,8 +18,6 @@ cfengine3 (Mike Gabriel)
--
dosbox (Markus Koschany)
--
-exiv2
---
faad2
NOTE: 20190519: I have a few patches pending for open issues. Will be PR-ed soon.
NOTE: 20190525: see https://github.com/knik0/faad2/pull/36
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6b064a3c843c27cda2653965070149193fe5cb6d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6b064a3c843c27cda2653965070149193fe5cb6d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190703/a5d53b8c/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list