Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: a3660637 by Salvatore Bonaccorso at 2021-03-01T08:27:07+01:00 Track fixed version for CVE-2020-27843 Cf. https://github.com/uclouvain/openjpeg/issues/1297#issuecomment-787475666 on why this is considered fixed in the 2.4.0 upstream release. - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -28758,7 +28758,7 @@ CVE-2020-27844 (A flaw was found in openjpeg's src/lib/openjp2/t2.c in versions NOTE: https://github.com/uclouvain/openjpeg/issues/1299 NOTE: https://github.com/uclouvain/openjpeg/commit/73fdf28342e4594019af26eb6a347a34eceb6296 (v2.4.0) CVE-2020-27843 (A flaw was found in OpenJPEG in versions prior to 2.4.0. This flaw all ...) - - openjpeg2 <unfixed> (bug #983663) + - openjpeg2 2.4.0-1 (bug #983663) [buster] - openjpeg2 <no-dsa> (Minor issue) [stretch] - openjpeg2 <no-dsa> (Minor issue) NOTE: https://github.com/uclouvain/openjpeg/issues/1297 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a366063789ae420e4c2297c319642ff904f42ca2 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a366063789ae420e4c2297c319642ff904f42ca2 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits