Author: carnil Date: 2017-09-23 09:26:10 +0000 (Sat, 23 Sep 2017) New Revision: 56043
Modified: data/CVE/list Log: Revert "Add CVE-2016-911[3-7]/openjpeg2 fixed version in unstable" Revert this commit for now as per previous commit for one openjpeg2 issue. Clarifying with maintainer where are the fixing commit for those issues. This reverts commit 5a6f7c335479d02fb32877b4c9de433a1ac0a3ea. Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-09-23 09:24:39 UTC (rev 56042) +++ data/CVE/list 2017-09-23 09:26:10 UTC (rev 56043) @@ -43083,23 +43083,23 @@ NOTE: https://github.com/uclouvain/openjpeg/issues/861 NOTE: https://github.com/uclouvain/openjpeg/commit/c22cbd8bdf8ff2ae372f94391a4be2d322b36b41 CVE-2016-9117 (NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in ...) - - openjpeg2 2.2.0-1 (unimportant; bug #844556) + - openjpeg2 <unfixed> (unimportant; bug #844556) NOTE: https://github.com/uclouvain/openjpeg/issues/860 NOTE: No code injection, function only exposed in the CLI tool CVE-2016-9116 (NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) in ...) - - openjpeg2 2.2.0-1 (unimportant; bug #844555) + - openjpeg2 <unfixed> (unimportant; bug #844555) NOTE: https://github.com/uclouvain/openjpeg/issues/859 NOTE: No code injection, function only exposed in the CLI tool CVE-2016-9115 (Heap Buffer Over-read in function imagetotga of convert.c(jp2):942 in ...) - - openjpeg2 2.2.0-1 (unimportant; bug #844554) + - openjpeg2 <unfixed> (unimportant; bug #844554) NOTE: https://github.com/uclouvain/openjpeg/issues/858 NOTE: No code injection, function only exposed in the CLI tool CVE-2016-9114 (There is a NULL Pointer Access in function imagetopnm of ...) - - openjpeg2 2.2.0-1 (unimportant; bug #844553) + - openjpeg2 <unfixed> (unimportant; bug #844553) NOTE: https://github.com/uclouvain/openjpeg/issues/857 NOTE: No code injection, function only exposed in the CLI tool CVE-2016-9113 (There is a NULL pointer dereference in function imagetobmp of ...) - - openjpeg2 2.2.0-1 (unimportant; bug #844552) + - openjpeg2 <unfixed> (unimportant; bug #844552) NOTE: https://github.com/uclouvain/openjpeg/issues/856 NOTE: No code injection, function only exposed in the CLI tool CVE-2016-9112 (Floating Point Exception (aka FPE or divide by zero) in ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits