[Pkg-phototools-devel] Bug#874430: CVE-2016-10504 / CVE-2017-14151
Mathieu Malaterre
malat at debian.org
Mon Oct 23 16:52:35 UTC 2017
Control: notfound -1 2.1.0-2+deb8u2
I have been trying to track those related CVE and it appears that this
commit should avoid this kind of issue:
https://github.com/uclouvain/openjpeg/commit/3a80b72ac
(I had actually forgotten I authored this back then).
I think the issue was introducated later:
https://github.com/uclouvain/openjpeg/commit/e05d2901e
So I will not include the related patch.
Cheers
More information about the Pkg-phototools-devel
mailing list