Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits: a243d968 by Hugo Lefeuvre at 2018-12-26T09:06:32Z dla-needed: update libsndfile entry - - - - - 3e1dc523 by Hugo Lefeuvre at 2018-12-26T09:06:32Z dla-needed: add notes to graphicsmagick entry - - - - - 1 changed file: - data/dla-needed.txt Changes: ===================================== data/dla-needed.txt ===================================== @@ -50,6 +50,8 @@ ghostscript (Lucas Kanashiro) gnutls28 -- graphicsmagick (Hugo Lefeuvre) + NOTE: 20181226: CVE-2018-20184: looks like fix involves some refactoring. not sure it's worth it unless i can come with a trimmed down version of it + NOTE: CVE-2018-20185, CVE-2018-20189: fix trivial, easy to test, should be worth it. -- jasper (Markus Koschany) -- @@ -79,8 +81,8 @@ libraw (Abhijith PA) NOTE: the stack-based and heap-based overflow issues. (apo) -- libsndfile (Hugo Lefeuvre) - NOTE: 20181224: CVE-2017-17456 and similar: my patch was approved, will be uploaded soon - NOTE: 20181219: CVE-2017-17457/6: asked for cve update as duplicates of CVE-2017-14245/CVE-2017-14246 + NOTE: 20181226: CVE-2018-19758: currently checking + NOTE: 20181226: CVE-2017-17457/6: asked for cve update as duplicates of CVE-2017-14245/CVE-2017-14246, no answer yet -- linux (Ben Hutchings) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/47e83060f931717fd6c5e921717974a886371771...3e1dc523ff86bbd1431a2c3cb1a779935a6f67b5 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/47e83060f931717fd6c5e921717974a886371771...3e1dc523ff86bbd1431a2c3cb1a779935a6f67b5 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits