Bug#931311: libsixel: Multiple security issues (CVE-2018-19756 CVE-2018-19757 CVE-2018-19759 CVE-2018-19761 CVE-2018-19762 CVE-2018-19763)

2019-08-29 Thread Takatsugu Nokubi
On Wed, 7 Aug 2019 10:05:36 +0900 Takatsugu Nokubi wrote: > Finaly, I made these fix patches, but not uploaded yet. > https://salsa.debian.org/debian/libsixel/tree/master/debian/patches At least, all bugs reported as important are fixed now. I'm working to fix patches for stretch:

Bug#931311: libsixel: Multiple security issues (CVE-2018-19756 CVE-2018-19757 CVE-2018-19759 CVE-2018-19761 CVE-2018-19762 CVE-2018-19763)

2019-08-06 Thread Takatsugu Nokubi
On Mon, 1 Jul 2019 15:24:05 +0200 Sylvain Beucler wrote: > The following vulnerabilities were published for libsixel. Finaly, I made these fix patches, but not uploaded yet. https://salsa.debian.org/debian/libsixel/tree/master/debian/patches > AFAICS upstream didn't act on them yet (see issues

Bug#931311: libsixel: Multiple security issues (CVE-2018-19756 CVE-2018-19757 CVE-2018-19759 CVE-2018-19761 CVE-2018-19762 CVE-2018-19763)

2019-07-01 Thread Sylvain Beucler
Package: libsixel X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerabilities were published for libsixel. AFAICS upstream didn't act on them yet (see issues links). CVE-2018-19756[0]: | There is a heap-based buffer over-read at stb_image.h