diff options
| author | Sylvain Beucler <beuc@beuc.net> | 2021-06-22 19:40:03 +0200 |
|---|---|---|
| committer | Sylvain Beucler <beuc@beuc.net> | 2021-06-22 23:04:10 +0200 |
| commit | abacc24b747e9153cfbf5ec15ba6dd0314c4a073 (patch) | |
| tree | 9aee919cc950df79a2aa37f61d95ec94de17abf6 /data/CVE/list.2017 | |
| parent | b1641e9033e4c19ee83b47da556e4b084bbed76f (diff) | |
CVE-2017-12596/openexr: reference common 2017-911x patch
Diffstat (limited to 'data/CVE/list.2017')
| -rw-r--r-- | data/CVE/list.2017 | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list.2017 b/data/CVE/list.2017 index 23ef29840c..78fe29cda2 100644 --- a/data/CVE/list.2017 +++ b/data/CVE/list.2017 @@ -18172,7 +18172,8 @@ CVE-2017-12596 (In OpenEXR 2.2.0, a crafted image causes a heap-based buffer ove [jessie] - openexr <no-dsa> (Minor issue) [wheezy] - openexr 1.6.1-6+deb7u1 NOTE: https://github.com/openexr/openexr/issues/238 - NOTE: Upstream fix https://github.com/openexr/openexr/commit/f09f5f26c1924c4f7e183428ca79c9881afaf53c + NOTE: https://github.com/AcademySoftwareFoundation/openexr/commit/49db4a4192482eec9c27669f75db144cf5434804 (v2.2.1) + NOTE: https://github.com/AcademySoftwareFoundation/openexr/commit/f09f5f26c1924c4f7e183428ca79c9881afaf53c (v2.3.0) CVE-2017-12595 (The tokenizer in QPDF 6.0.0 and 7.0.b1 is recursive for arrays and dic ...) - qpdf 7.0.0-1 [stretch] - qpdf <no-dsa> (Minor issue) |