[Git][security-tracker-team/security-tracker][master] Strip no-dsa entries which will recieve an update
Utkarsh Gupta
utkarsh at debian.org
Fri Jul 10 19:53:20 BST 2020
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker
Commits:
93b31969 by Utkarsh Gupta at 2020-07-11T00:23:06+05:30
Strip no-dsa entries which will recieve an update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -19935,7 +19935,6 @@ CVE-2020-8112 (opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 th
{DLA-2089-1}
- openjpeg2 <unfixed> (bug #950184)
[buster] - openjpeg2 <no-dsa> (Minor issue)
- [stretch] - openjpeg2 <no-dsa> (Minor issue)
NOTE: https://github.com/uclouvain/openjpeg/issues/1231
CVE-2020-8111
RESERVED
@@ -22921,7 +22920,6 @@ CVE-2020-6851 (OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1
{DLA-2081-1}
- openjpeg2 <unfixed> (bug #950000)
[buster] - openjpeg2 <no-dsa> (Minor issue)
- [stretch] - openjpeg2 <no-dsa> (Minor issue)
NOTE: https://github.com/uclouvain/openjpeg/issues/1228
NOTE: https://github.com/uclouvain/openjpeg/commit/024b8407392cb0b82b04b58ed256094ed5799e04
CVE-2020-6850 (Utilities.php in the miniorange-saml-20-single-sign-on plugin before 4 ...)
@@ -60466,7 +60464,6 @@ CVE-2019-12974 (A NULL pointer dereference in the function ReadPANGOImage in cod
CVE-2019-12973 (In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_c ...)
- openjpeg2 <unfixed> (bug #931292)
[buster] - openjpeg2 <no-dsa> (Minor issue)
- [stretch] - openjpeg2 <no-dsa> (Minor issue)
[jessie] - openjpeg2 <not-affected> (vulnerable code is not present)
NOTE: https://github.com/uclouvain/openjpeg/pull/1185
NOTE: https://github.com/uclouvain/openjpeg/commit/21399f6b7d318fcdf4406d5e88723c4922202aa3
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93b3196964dac4ef4a744b828172db6a688a75db
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93b3196964dac4ef4a744b828172db6a688a75db
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200710/1c1f8f9d/attachment.html>
More information about the debian-security-tracker-commits
mailing list