Author: agx
Date: 2017-02-03 11:53:26 +0000 (Fri, 03 Feb 2017)
New Revision: 48683
Modified:
data/CVE/list
Log:
Mark netpbm-free as unaffected in all suites
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-03 11:21:13 UTC (rev 48682)
+++ data/CVE/list 2017-02-03 11:53:26 UTC (rev 48683)
@@ -513,9 +513,10 @@
- libpodofo <unfixed>
CVE-2017-5849 [Out-of-Bound read and write issues in put1bitbwtile() and
putgreytile()]
RESERVED
- - netpbm-free <unfixed> (bug #853997)
- [wheezy] - netpbm-free <not-affected> (vulnerable code not present)
+ - netpbm-free <not-affected> (vulnerable code not present)
NOTE: http://www.openwall.com/lists/oss-security/2017/02/02/2
+ NOTE: Debian uses an unaffected fork:
+ NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2654#c8
CVE-2017-5850
RESERVED
NOT-FOR-US: OpenBSD httpd
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
