[Git][security-tracker-team/security-tracker][master] fix for CVE-2020-0182 confirmed by upstream, remove Android ref, only causes confusion

Moritz Muehlenhoff Mon, 08 Jun 2020 11:15:03 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
6d74aca7 by Moritz Muehlenhoff at 2020-06-08T20:13:33+02:00
fix for CVE-2020-0182 confirmed by upstream, remove Android ref, only causes 
confusion

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -38758,9 +38758,8 @@ CVE-2020-0182
        - libexif 0.6.22-1 (low)
        [buster] - libexif <no-dsa> (Minor issue)
        [stretch] - libexif <no-dsa> (Minor issue)
-       NOTE: Android patch: 
https://android.googlesource.com/platform/external/libexif/+/4b7b14770c4290eaeaebadf0e99ffdfdbd8f725c
-       NOTE: Upstream patch (sligther releaxed boundary checks):
        NOTE: 
https://github.com/libexif/libexif/commit/f9bb9f263fb00f0603ecbefa8957cad24168cbff
 (0.6.22)
+       NOTE: CVE originally originally reported by Android where a different 
patch was shipped
 CVE-2020-0181
        RESERVED
        {DSA-4618-1 DLA-2100-1}



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d74aca7934c5707bbd8c46ce6d549fd2eacd5c5

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d74aca7934c5707bbd8c46ce6d549fd2eacd5c5
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] fix for CVE-2020-0182 confirmed by upstream, remove Android ref, only causes confusion

Reply via email to