[Git][security-tracker-team/security-tracker][master] release DLA-1720-1 for liblivemedia

Mon Mar 18 19:48:35 GMT 2019

Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0c801ff3 by Hugo Lefeuvre at 2019-03-18T19:47:50Z
release DLA-1720-1 for liblivemedia

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[18 Mar 2019] DLA-1720-1 liblivemedia - security update
+	{CVE-2019-9215}
+	[jessie] - liblivemedia 2014.01.13-1+deb8u3
 [18 Mar 2019] DLA-1719-1 libjpeg-turbo - security update
 	{CVE-2018-14498}
 	[jessie] - libjpeg-turbo 1:1.3.1-12+deb8u2


=====================================
data/dla-needed.txt
=====================================
@@ -44,11 +44,8 @@ kde4libs (Hugo Lefeuvre)
 libav
   NOTE: 20190131: Re-added after ~deb8u5 upload. Still not done, yet.
 --
-liblivemedia (Hugo Lefeuvre)
-  NOTE: 20190226: CVE-2019-773{2,3}: wait for upstream patch - hle
-  NOTE: CVE-2019-9215: at least dos, might be used for remote code execution,
-  NOTE: CVE-2019-9215: prepared a poc and updates for jessie and stretch.
-  NOTE: CVE-2019-9215: waiting for stretch upload before going on with jessie.
+liblivemedia
+  NOTE: 20190318: CVE-2019-773{2,3}: wait for upstream patch - hle
 --
 libmatio
   NOTE: fairly high number of open issues. Not sure why we never had a look at them.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c801ff3de4d94b1cab8b3c71788530ad8aabd8f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c801ff3de4d94b1cab8b3c71788530ad8aabd8f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190318/003d6d10/attachment-0001.html>
