[Git][security-tracker-team/security-tracker][master] CVE-2018-19759/libsixel

Mon Mar 4 07:58:39 GMT 2019

Henri Salo pushed to branch master at Debian Security Tracker / security-tracker


Commits:
77bb5bc7 by Henri Salo at 2019-03-04T07:58:25Z
CVE-2018-19759/libsixel

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20455,7 +20455,8 @@ CVE-2018-19760 (cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak. ...
 	NOTE: Issue caused by premature exit without cleanup on an error in the caller
 	NOTE: not in the library; Negligible security impact in itself and disputed.
 CVE-2018-19759 (There is a heap-based buffer over-read at stb_image_write.h (function: ...)
-	TODO: check
+	- libsixel <unfixed>
+	NOTE: https://github.com/saitoha/libsixel/issues/77
 CVE-2018-19758 (There is a heap-based buffer over-read at wav.c in wav_write_header in ...)
 	{DLA-1632-1}
 	- libsndfile 1.0.28-5 (bug #917416)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/77bb5bc7474451f1b7af118b334a43fdbf86617c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/77bb5bc7474451f1b7af118b334a43fdbf86617c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190304/f1a82d62/attachment.html>
