[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2016-9112,openjpeg2: remove no-dsa tag for Jessie

Markus Koschany apo at debian.org
Wed Jul 10 17:03:26 BST 2019 


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
856136c5 by Markus Koschany at 2019-07-10T16:02:09Z
CVE-2016-9112,openjpeg2: remove no-dsa tag for Jessie

- - - - -
a1bec473 by Markus Koschany at 2019-07-10T16:03:05Z
Claim libxslt in dla-needed.txt

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -142580,7 +142580,6 @@ CVE-2016-9113 (There is a NULL pointer dereference in function imagetobmp of con
 CVE-2016-9112 (Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cp ...)
 	- openjpeg2 2.1.2-1.2 (bug #844551)
 	[stretch] - openjpeg2 <no-dsa> (Minor issue)
-	[jessie] - openjpeg2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/uclouvain/openjpeg/commit/d27ccf01c68a31ad62b33d2dc1ba2bb1eeaafe7b
 	NOTE: https://github.com/uclouvain/openjpeg/issues/855
 CVE-2016-9111 (Incorrect access control mechanisms in Citrix Receiver Desktop Lock 4. ...)


=====================================
data/dla-needed.txt
=====================================
@@ -80,7 +80,7 @@ libsdl2-image
 libspring-java (Roberto C. Sánchez)
   NOTE: 20190624: Three CVEs remain to be patched. (roberto)
 --
-libxslt
+libxslt (Markus Koschany
   NOTE: 20190701: the Security Team doesn't want us to mark when jessie was explicitely tested as unfixed, so writing it here (beuc)
   NOTE: 20190701: CVE-2019-13117: patch applies on jessie
   NOTE: 20190701: CVE-2019-13118: patch applies on jessie



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4813c2d3466afe44c2b78afaca3df6846e6a70a8...a1bec4734be2ac0f90b1ed1cadb610a27ebfc343

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4813c2d3466afe44c2b78afaca3df6846e6a70a8...a1bec4734be2ac0f90b1ed1cadb610a27ebfc343
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190710/219949c8/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list