blob: 9e7b5cff0474f50e7ff693e175f28db755458603 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
|
=== none
From the graphicsmagick 1.1.7-1 upload:
* magick/constitute.c: Apply upstream fix for potential NULL pointer
dereference in ReadImage().
Does this have a CVE name?
Does it affect imagemagick?
=== jmm
tikiwiki has been uploaded to the archive a month ago. All previous issues
in it should be reviewed, whether they're fixed and CVE/list updated
accordingly.
=== none
From the freewheeling 0.5pre4-5 upload:
.
* Fixes various gcc-4.0 warnings (uninitialised variables, non-void
functions never returning, wrong printf format strings)
* Fixed 2 buffer overflows in fweelin_core_dsp.cc
Are any of these exploitable issues?
=== none
ffmpeg creates libavcodec only statically. It should be evaluated if there's
really a compelling reason, as it requires massive recompiles for every security
update. If upstream is reluctant this could be done locally for Etch at least.
|