Dylan Aïssi pushed to branch master at Debian Security Tracker / security-tracker
Commits: f2db355d by Dylan Aïssi at 2019-11-19T06:44:54Z CVE-2019-9371,CVE-2019-9325: jessie not affected - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -32290,6 +32290,7 @@ CVE-2019-9372 (In libskia, there is a possible crash due to a missing null check TODO: check CVE-2019-9371 (In libvpx, there is a possible resource exhaustion due to improper inp ...) - libvpx 1.8.1-2 + [jessie] - libvpx <not-affected> (Vunerable code introduced in 1.4.0) NOTE: Commits in libwebm: NOTE: https://chromium.googlesource.com/webm/libwebm/+/027a472efe49ff3a24be619442d2150658dbaaa0 NOTE: https://chromium.googlesource.com/webm/libwebm/+/cb5a9477073cf7ae4a28356d6e3e5638aba78dc9 @@ -32388,6 +32389,7 @@ CVE-2019-9326 (In Bluetooth, there is a possible out of bounds read due to a mis NOT-FOR-US: Android CVE-2019-9325 (In libvpx, there is a possible out of bounds read due to a missing bou ...) - libvpx 1.8.1-2 + [jessie] - libvpx <not-affected> (Vunerable code introduced in 1.4.0) NOTE: https://github.com/webmproject/libvpx/commit/0681cff1ad36b3ef8ec242f59b5a6c4234ccfb88 CVE-2019-9324 RESERVED View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2db355d783c1d4da45129c5adf3311284fb8069 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2db355d783c1d4da45129c5adf3311284fb8069 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits