[Secure-testing-commits] r54657 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2017-08-12 00:37:14 +0000 (Sat, 12 Aug 2017)
New Revision: 54657

Modified:
   data/CVE/list
Log:
openjpeg2 NMUed


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-08-12 00:23:26 UTC (rev 54656)
+++ data/CVE/list       2017-08-12 00:37:14 UTC (rev 54657)
@@ -37033,7 +37033,7 @@
        - moin 1.9.9-1 (bug #844338)
        NOTE: Fixed by: http://hg.moinmo.in/moin/1.9/rev/3bddf075fdbd
 CVE-2016-9118 (Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage 
of ...)
-       - openjpeg2 <unfixed> (bug #844557)
+       - openjpeg2 2.1.2-1.2 (bug #844557)
        NOTE: https://github.com/uclouvain/openjpeg/issues/861
        NOTE: 
https://github.com/uclouvain/openjpeg/commit/c22cbd8bdf8ff2ae372f94391a4be2d322b36b41
 CVE-2016-9117 (NULL Pointer Access in function imagetopnm of 
convert.c(jp2):1289 in ...)
@@ -37057,7 +37057,7 @@
        NOTE: https://github.com/uclouvain/openjpeg/issues/856
        NOTE: No code injection, function only exposed in the CLI tool
 CVE-2016-9112 (Floating Point Exception (aka FPE or divide by zero) in ...)
-       - openjpeg2 <unfixed> (bug #844551)
+       - openjpeg2 2.1.2-1.2 (bug #844551)
        [stretch] - openjpeg2 <no-dsa> (Minor issue)
        [jessie] - openjpeg2 <no-dsa> (Minor issue)
        NOTE: 
https://github.com/uclouvain/openjpeg/commit/d27ccf01c68a31ad62b33d2dc1ba2bb1eeaafe7b
     
@@ -50475,7 +50475,7 @@
        [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
 CVE-2016-5152 (Integer overflow in the opj_tcd_get_decoded_tile_size function 
in ...)
        {DSA-3660-1}
-       - openjpeg2 <unfixed>
+       - openjpeg2 2.1.2-1.2
        - chromium-browser 53.0.2785.89-1
        [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
        NOTE: 
https://github.com/uclouvain/openjpeg/commit/3fbe71369019df0b47c7a2be4fab8c05768f2f32
     
@@ -61799,7 +61799,7 @@
        - openjpeg <removed>
        [jessie] - openjpeg <not-affected> (Vulnerable code introduced later)
        [wheezy] - openjpeg <not-affected> (Vulnerable code introduced later)
-       - openjpeg2 <unfixed>
+       - openjpeg2 2.1.2-1.2
        - chromium-browser 48.0.2564.116-1
        [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
        [squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze 
LTS)
@@ -61816,7 +61816,7 @@
        - openjpeg <removed>
        [jessie] - openjpeg <not-affected> (Vulnerable code introduced later)
        [wheezy] - openjpeg <not-affected> (Vulnerable code introduced later)
-       - openjpeg2 <unfixed>
+       - openjpeg2 2.1.2-1.2
        - chromium-browser 48.0.2564.116-1
        [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
        [squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze 
LTS)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits