[Git][security-tracker-team/security-tracker][master] 2 commits: Strip no-dsa tags for graphviz for stretch which'll receieve an update
Utkarsh Gupta (@utkarsh)
utkarsh at debian.org
Thu May 13 09:32:06 BST 2021
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d619d049 by Utkarsh Gupta at 2021-05-13T14:00:53+05:30
Strip no-dsa tags for graphviz for stretch which'll receieve an update
- - - - -
ebc7f93f by Utkarsh Gupta at 2021-05-13T14:01:40+05:30
Mark CVE-2019-9904/graphviz as ignored for stretch instead
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -139993,7 +139993,7 @@ CVE-2019-9904 (An issue was discovered in lib\cdt\dttree.c in libcdt.a in graphv
- graphviz <unfixed> (low; bug #925284)
[bullseye] - graphviz <ignored> (Minor issue)
[buster] - graphviz <ignored> (Minor issue)
- [stretch] - graphviz <no-dsa> (Minor issue)
+ [stretch] - graphviz <ignored> (Minor issue)
[jessie] - graphviz <no-dsa> (Minor issue)
NOTE: https://gitlab.com/graphviz/graphviz/issues/1512
CVE-2019-9903 (PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict mark ...)
@@ -193352,7 +193352,6 @@ CVE-2018-10197 (There is a time-based blind SQL injection vulnerability in the A
NOT-FOR-US: ELO
CVE-2018-10196 (NULL pointer dereference vulnerability in the rebuild_vlists function ...)
- graphviz 2.40.1-6 (low; bug #898841)
- [stretch] - graphviz <no-dsa> (Minor issue)
[jessie] - graphviz <no-dsa> (Minor issue)
[wheezy] - graphviz <no-dsa> (Minor issue)
NOTE: https://gitlab.com/graphviz/graphviz/issues/1367
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/f212ddafa7c5c9cee82443b833f24c91f48b3474...ebc7f93f1c451e9b640555888fc30f3e634e2642
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/f212ddafa7c5c9cee82443b833f24c91f48b3474...ebc7f93f1c451e9b640555888fc30f3e634e2642
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210513/0e53f05b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list