Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: cd0fe072 by Salvatore Bonaccorso at 2018-12-10T20:05:29Z Add fixed version for CVE-2018-6352/libpodofo The fix for CVE-2018-5296 limited the number of objects to 8388607 according to the reasoning followed in https://sourceforge.net/p/podofo/tickets/6/ for CVE-2018-5296 . - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -39972,7 +39972,7 @@ CVE-2018-6353 (The Python console in Electrum through 2.9.4 and 3.x through 3.0. NOTE: https://github.com/spesmilo/electrum/issues/3678 NOTE: https://github.com/spesmilo/electrum/pull/3700 CVE-2018-6352 (In PoDoFo 0.9.5, there is an Excessive Iteration in the ...) - - libpodofo <unfixed> + - libpodofo 0.9.6+dfsg-3 [stretch] - libpodofo <no-dsa> (Minor issue) [jessie] - libpodofo <no-dsa> (Minor issue) [wheezy] - libpodofo <no-dsa> (Minor issue) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cd0fe072eb2c8f04b5b34255563ed0f0f653043f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cd0fe072eb2c8f04b5b34255563ed0f0f653043f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
