[Git][security-tracker-team/security-tracker][master] Four opencv issues now fixed in unstable with 4.x upload to unstable

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e257a4ff by Salvatore Bonaccorso at 2019-10-17T05:12:07Z
Four opencv issues now fixed in unstable with 4.x upload to unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8839,7 +8839,7 @@ CVE-2019-14494 (An issue was discovered in Poppler through 0.78.0. There is a di
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/commit/b224e2f5739fe61de9fa69955d016725b2a4b78d
 CVE-2019-14493 (An issue was discovered in OpenCV before 4.1.1. There is a NULL pointe ...)
 	[experimental] - opencv 4.1.1+dfsg-1
-	- opencv <unfixed>
+	- opencv 4.1.2+dfsg-3
 	[jessie] - opencv <postponed> (Minor issue, DoS, PoC not crashing)
 	NOTE: https://github.com/opencv/opencv/issues/15127
 	NOTE: https://github.com/opencv/opencv/commit/5691d998ead1d9b0542bcfced36c2dceb3a59023
@@ -8848,13 +8848,13 @@ CVE-2019-14493 (An issue was discovered in OpenCV before 4.1.1. There is a NULL
 	TODO: check if the old code though is really affected, might been introduced with the refactoring
 CVE-2019-14492 (An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. T ...)
 	[experimental] - opencv 4.1.1+dfsg-1
-	- opencv <unfixed>
+	- opencv 4.1.2+dfsg-3
 	[jessie] - opencv <postponed> (Minor issue, DoS, PoC not crashing)
 	NOTE: https://github.com/opencv/opencv/issues/15124
 	NOTE: https://github.com/opencv/opencv/commit/ac425f67e4c1d0da9afb9203f0918d8d57c067ed
 CVE-2019-14491 (An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. T ...)
 	[experimental] - opencv 4.1.1+dfsg-1
-	- opencv <unfixed>
+	- opencv 4.1.2+dfsg-3
 	[jessie] - opencv <postponed> (Minor issue, DoS, PoC not crashing)
 	NOTE: https://github.com/opencv/opencv/issues/15125
 	NOTE: https://github.com/opencv/opencv/commit/ac425f67e4c1d0da9afb9203f0918d8d57c067ed
@@ -93367,7 +93367,7 @@ CVE-2017-18010 (The E-goi Smart Marketing SMS and Newsletters Forms plugin befor
 	NOT-FOR-US: E-goi Smart Marketing SMS and Newsletters Forms plugin for WordPress
 CVE-2017-18009 (In OpenCV 3.3.1, a heap-based buffer over-read exists in the function  ...)
 	[experimental] - opencv 3.4.4+dfsg-1~exp1
-	- opencv <unfixed> (low; bug #924884)
+	- opencv 4.1.2+dfsg-3 (low; bug #924884)
 	[buster] - opencv <no-dsa> (Minor issue)
 	[stretch] - opencv <not-affected> (Vulnerable code introduced later)
 	[jessie] - opencv <not-affected> (Vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e257a4ff9325542591c4395a276378c66c85821a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e257a4ff9325542591c4395a276378c66c85821a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191017/838e7fa2/attachment.html>