[Git][security-tracker-team/security-tracker][master] disassociate CVE-2017-0641 from libvpx

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Aug 21 13:22:41 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
464051b8 by Moritz Muehlenhoff at 2025-08-21T14:22:11+02:00
disassociate CVE-2017-0641 from libvpx

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -636464,10 +636464,11 @@ CVE-2017-0643 (A remote denial of service vulnerability in Mediaserver could ena
 CVE-2017-0642 (A remote denial of service vulnerability in libhevc in Mediaserver cou ...)
 	NOT-FOR-US: Android Mediaserver
 CVE-2017-0641 (A remote denial of service vulnerability in libvpx in Mediaserver coul ...)
-	- libvpx <unfixed> (unimportant; bug #871931)
+	NOT-FOR-US: Android Mediaserver
 	NOTE: https://android.googlesource.com/platform/external/libvpx/+/698796fc930baecf5c3fdebef17e73d5d9a58bcb
-	NOTE: Debian builds configures with --size-limit=16384x16384, Android lowered
-	NOTE: the limit to something more aligned for smart phones
+	NOTE: This is for an Android-specific use of libvpx, Debian builds configures with
+	NOTE: --size-limit=16384x16384 and Android lowered the limit to something more
+	NOTE: aligned for smart phones, see also bug #871931
 CVE-2017-0640 (A remote denial of service vulnerability in Mediaserver could enable a ...)
 	NOT-FOR-US: Android Mediaserver
 CVE-2017-0639 (An information disclosure vulnerability in Bluetooth component could e ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/464051b88008a35c42df2cae5862dfdabb39c095

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/464051b88008a35c42df2cae5862dfdabb39c095
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250821/b7eb20c8/attachment.htm>

More information about the debian-security-tracker-commits mailing list