[Git][security-tracker-team/security-tracker][master] fix for CVE-2020-0182 confirmed by upstream, remove Android ref, only causes confusion
Moritz Muehlenhoff
jmm at debian.org
Mon Jun 8 19:14:06 BST 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6d74aca7 by Moritz Muehlenhoff at 2020-06-08T20:13:33+02:00
fix for CVE-2020-0182 confirmed by upstream, remove Android ref, only causes confusion
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -38758,9 +38758,8 @@ CVE-2020-0182
- libexif 0.6.22-1 (low)
[buster] - libexif <no-dsa> (Minor issue)
[stretch] - libexif <no-dsa> (Minor issue)
- NOTE: Android patch: https://android.googlesource.com/platform/external/libexif/+/4b7b14770c4290eaeaebadf0e99ffdfdbd8f725c
- NOTE: Upstream patch (sligther releaxed boundary checks):
NOTE: https://github.com/libexif/libexif/commit/f9bb9f263fb00f0603ecbefa8957cad24168cbff (0.6.22)
+ NOTE: CVE originally originally reported by Android where a different patch was shipped
CVE-2020-0181
RESERVED
{DSA-4618-1 DLA-2100-1}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d74aca7934c5707bbd8c46ce6d549fd2eacd5c5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d74aca7934c5707bbd8c46ce6d549fd2eacd5c5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200608/10d9cc74/attachment.html>
More information about the debian-security-tracker-commits
mailing list