Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits: 292ef8d2 by Hugo Lefeuvre at 2019-01-21T17:45:56Z libpng: CVE-2019-6129 <ignored> in Jessie no security impact, see https://github.com/glennrp/libpng/issues/269 - - - - - 2 changed files: - data/CVE/list - data/dla-needed.txt Changes: ===================================== data/CVE/list ===================================== @@ -933,6 +933,7 @@ CVE-2019-6130 (Artifex MuPDF 1.14.0 has a SEGV in the function fz_load_page of t CVE-2019-6129 (png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as ...) - libpng1.6 <unfixed> (unimportant) - libpng <removed> + [jessie] - libpng <ignored> (no security impact) NOTE: https://github.com/glennrp/libpng/issues/269 NOTE: Memory leak in CLI tool, no security impact CVE-2019-6128 (The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory ...) ===================================== data/dla-needed.txt ===================================== @@ -68,9 +68,6 @@ krb5 (Thorsten Alteholz) -- libav (Mike Gabriel) -- -libpng (Hugo Lefeuvre) - NOTE: 20190121: Are we sure? Quoting upstream on CVE-2019-6129: "I think this is not a security issue at all". (lamby) --- libjpeg-turbo NOTE: 20190121: as Mike is an Uploader:, probably he wants to do this ... -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/292ef8d261bcd73a96efb0f13c20e852cd74546f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/292ef8d261bcd73a96efb0f13c20e852cd74546f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
