Dylan Aïssi pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f2db355d by Dylan Aïssi at 2019-11-19T06:44:54Z
CVE-2019-9371,CVE-2019-9325: jessie not affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -32290,6 +32290,7 @@ CVE-2019-9372 (In libskia, there is a possible crash
due to a missing null check
TODO: check
CVE-2019-9371 (In libvpx, there is a possible resource exhaustion due to
improper inp ...)
- libvpx 1.8.1-2
+ [jessie] - libvpx <not-affected> (Vunerable code introduced in 1.4.0)
NOTE: Commits in libwebm:
NOTE:
https://chromium.googlesource.com/webm/libwebm/+/027a472efe49ff3a24be619442d2150658dbaaa0
NOTE:
https://chromium.googlesource.com/webm/libwebm/+/cb5a9477073cf7ae4a28356d6e3e5638aba78dc9
@@ -32388,6 +32389,7 @@ CVE-2019-9326 (In Bluetooth, there is a possible out of
bounds read due to a mis
NOT-FOR-US: Android
CVE-2019-9325 (In libvpx, there is a possible out of bounds read due to a
missing bou ...)
- libvpx 1.8.1-2
+ [jessie] - libvpx <not-affected> (Vunerable code introduced in 1.4.0)
NOTE:
https://github.com/webmproject/libvpx/commit/0681cff1ad36b3ef8ec242f59b5a6c4234ccfb88
CVE-2019-9324
RESERVED
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2db355d783c1d4da45129c5adf3311284fb8069
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2db355d783c1d4da45129c5adf3311284fb8069
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
