Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e257a4ff by Salvatore Bonaccorso at 2019-10-17T05:12:07Z
Four opencv issues now fixed in unstable with 4.x upload to unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8839,7 +8839,7 @@ CVE-2019-14494 (An issue was discovered in Poppler
through 0.78.0. There is a di
NOTE:
https://gitlab.freedesktop.org/poppler/poppler/commit/b224e2f5739fe61de9fa69955d016725b2a4b78d
CVE-2019-14493 (An issue was discovered in OpenCV before 4.1.1. There is a
NULL pointe ...)
[experimental] - opencv 4.1.1+dfsg-1
- - opencv <unfixed>
+ - opencv 4.1.2+dfsg-3
[jessie] - opencv <postponed> (Minor issue, DoS, PoC not crashing)
NOTE: https://github.com/opencv/opencv/issues/15127
NOTE:
https://github.com/opencv/opencv/commit/5691d998ead1d9b0542bcfced36c2dceb3a59023
@@ -8848,13 +8848,13 @@ CVE-2019-14493 (An issue was discovered in OpenCV
before 4.1.1. There is a NULL
TODO: check if the old code though is really affected, might been
introduced with the refactoring
CVE-2019-14492 (An issue was discovered in OpenCV before 3.4.7 and 4.x before
4.1.1. T ...)
[experimental] - opencv 4.1.1+dfsg-1
- - opencv <unfixed>
+ - opencv 4.1.2+dfsg-3
[jessie] - opencv <postponed> (Minor issue, DoS, PoC not crashing)
NOTE: https://github.com/opencv/opencv/issues/15124
NOTE:
https://github.com/opencv/opencv/commit/ac425f67e4c1d0da9afb9203f0918d8d57c067ed
CVE-2019-14491 (An issue was discovered in OpenCV before 3.4.7 and 4.x before
4.1.1. T ...)
[experimental] - opencv 4.1.1+dfsg-1
- - opencv <unfixed>
+ - opencv 4.1.2+dfsg-3
[jessie] - opencv <postponed> (Minor issue, DoS, PoC not crashing)
NOTE: https://github.com/opencv/opencv/issues/15125
NOTE:
https://github.com/opencv/opencv/commit/ac425f67e4c1d0da9afb9203f0918d8d57c067ed
@@ -93367,7 +93367,7 @@ CVE-2017-18010 (The E-goi Smart Marketing SMS and
Newsletters Forms plugin befor
NOT-FOR-US: E-goi Smart Marketing SMS and Newsletters Forms plugin for
WordPress
CVE-2017-18009 (In OpenCV 3.3.1, a heap-based buffer over-read exists in the
function ...)
[experimental] - opencv 3.4.4+dfsg-1~exp1
- - opencv <unfixed> (low; bug #924884)
+ - opencv 4.1.2+dfsg-3 (low; bug #924884)
[buster] - opencv <no-dsa> (Minor issue)
[stretch] - opencv <not-affected> (Vulnerable code introduced later)
[jessie] - opencv <not-affected> (Vulnerable code introduced later)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/e257a4ff9325542591c4395a276378c66c85821a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/e257a4ff9325542591c4395a276378c66c85821a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
