Santiago R.R. pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
06a9d7f0 by Santiago Ruano Rincón at 2018-03-03T16:18:08+01:00
Add CVE-2017-18196/leptonlib jessie and wheezy not affected
Signed-off-by: Santiago Ruano Rincón <santiag...@riseup.net>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -9933,6 +9933,8 @@ CVE-2018-7441 (Leptonica through 1.75.3 uses hardcoded
/tmp pathnames, which mig
NOTE: https://lists.debian.org/debian-lts/2018/02/msg00054.html
CVE-2017-18196 (Leptonica 1.74.4 constructs unintended pathnames (containing
duplicated ...)
- leptonlib 1.74.4-2 (bug #885704)
+ [jessie] - leptonlib <not-affected> (Vulnerable code not present)
+ [wheezy] - leptonlib <not-affected> (Vulnerable code not present)
CVE-2018-7440 (An issue was discovered in Leptonica through 1.75.3. The ...)
- leptonlib 1.75.3-3 (bug #891932)
[stretch] - leptonlib <not-affected> (Incomplete fix for CVE-2018-3836
not applied)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/06a9d7f00b6a4786589c0212fd14f5858567a19d
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/06a9d7f00b6a4786589c0212fd14f5858567a19d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
