[Git][security-tracker-team/security-tracker][master] dla-needed: update libsdl2 entry
Hugo Lefeuvre
hle at debian.org
Mon Jun 17 16:28:42 BST 2019
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5fd2a3e3 by Hugo Lefeuvre at 2019-06-17T15:28:11Z
dla-needed: update libsdl2 entry
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
@@ -66,14 +66,9 @@ libmatio (Adrian Bunk)
libsdl1.2
NOTE: see libsdl2 entry.
--
-libsdl2
- NOTE: recent issues received very few investigation. Some of them have already been
- NOTE: triaged no-dsa, but I think we should at least process the TODOs to determine
- NOTE: which product exactly is affected.
- NOTE: Also, I don't know very much how these functions are called by reverse
- NOTE: dependencies, but CVE-2019-12221 at least is not a completely a "harmless
- NOTE: crasher" since I suspect it to allow for unlimited oob write on the heap. Hard
- NOTE: to exploit, but not impossible I believe.
+libsdl2 (Hugo Lefeuvre)
+ NOTE: I have written patches, and they were merged by upstream a few days ago.
+ NOTE: upload will happen tomorrow.
--
libsdl2-image
NOTE: see libsdl2 entry.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5fd2a3e397faddd5efd13cb142022298d1624d5a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5fd2a3e397faddd5efd13cb142022298d1624d5a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190617/492c2ca5/attachment.html>
More information about the debian-security-tracker-commits
mailing list