Author: jmm Date: 2017-08-12 00:37:14 +0000 (Sat, 12 Aug 2017) New Revision: 54657
Modified: data/CVE/list Log: openjpeg2 NMUed Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-08-12 00:23:26 UTC (rev 54656) +++ data/CVE/list 2017-08-12 00:37:14 UTC (rev 54657) @@ -37033,7 +37033,7 @@ - moin 1.9.9-1 (bug #844338) NOTE: Fixed by: http://hg.moinmo.in/moin/1.9/rev/3bddf075fdbd CVE-2016-9118 (Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of ...) - - openjpeg2 <unfixed> (bug #844557) + - openjpeg2 2.1.2-1.2 (bug #844557) NOTE: https://github.com/uclouvain/openjpeg/issues/861 NOTE: https://github.com/uclouvain/openjpeg/commit/c22cbd8bdf8ff2ae372f94391a4be2d322b36b41 CVE-2016-9117 (NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in ...) @@ -37057,7 +37057,7 @@ NOTE: https://github.com/uclouvain/openjpeg/issues/856 NOTE: No code injection, function only exposed in the CLI tool CVE-2016-9112 (Floating Point Exception (aka FPE or divide by zero) in ...) - - openjpeg2 <unfixed> (bug #844551) + - openjpeg2 2.1.2-1.2 (bug #844551) [stretch] - openjpeg2 <no-dsa> (Minor issue) [jessie] - openjpeg2 <no-dsa> (Minor issue) NOTE: https://github.com/uclouvain/openjpeg/commit/d27ccf01c68a31ad62b33d2dc1ba2bb1eeaafe7b @@ -50475,7 +50475,7 @@ [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy) CVE-2016-5152 (Integer overflow in the opj_tcd_get_decoded_tile_size function in ...) {DSA-3660-1} - - openjpeg2 <unfixed> + - openjpeg2 2.1.2-1.2 - chromium-browser 53.0.2785.89-1 [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy) NOTE: https://github.com/uclouvain/openjpeg/commit/3fbe71369019df0b47c7a2be4fab8c05768f2f32 @@ -61799,7 +61799,7 @@ - openjpeg <removed> [jessie] - openjpeg <not-affected> (Vulnerable code introduced later) [wheezy] - openjpeg <not-affected> (Vulnerable code introduced later) - - openjpeg2 <unfixed> + - openjpeg2 2.1.2-1.2 - chromium-browser 48.0.2564.116-1 [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy) [squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze LTS) @@ -61816,7 +61816,7 @@ - openjpeg <removed> [jessie] - openjpeg <not-affected> (Vulnerable code introduced later) [wheezy] - openjpeg <not-affected> (Vulnerable code introduced later) - - openjpeg2 <unfixed> + - openjpeg2 2.1.2-1.2 - chromium-browser 48.0.2564.116-1 [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy) [squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze LTS) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits