diff options
author | Neil Williams <codehelp@debian.org> | 2021-08-06 09:41:21 +0100 |
---|---|---|
committer | Neil Williams <codehelp@debian.org> | 2021-08-06 09:41:21 +0100 |
commit | 64874d1a75ee3feebbba6b4b128c0f496b0aa645 (patch) | |
tree | 56b4751307fbb5fe7daa64293033536b088e7ff5 /data/CVE/2016.list | |
parent | 9e300fd8bda0b7b4db5ab3772142326ef410f65c (diff) |
Clarify 49c364ab for mupdf
Vulnerable C code exists in the source package but this is neither
compiled nor packaged in stretch. Set <ignored> in preference to
<not-affected>.
Diffstat (limited to 'data/CVE/2016.list')
-rw-r--r-- | data/CVE/2016.list | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/data/CVE/2016.list b/data/CVE/2016.list index 1f83088e66..d0524624ee 100644 --- a/data/CVE/2016.list +++ b/data/CVE/2016.list @@ -2116,14 +2116,14 @@ CVE-2016-10248 (The jpc_tsfb_synthesize function in jpc_tsfb.c in JasPer before CVE-2016-10247 (Buffer overflow in the my_getline function in jstest_main.c in Mujstes ...) - mupdf 1.11+ds1-1 (unimportant) [wheezy] - mupdf <not-affected> (Vulnerable code not present) - [stretch] - mupdf <not-affected> (Vulnerable code not present) + [stretch] - mupdf <ignored> (Vulnerable code not packaged or compiled) NOTE: Although jstest_main.c compiled during build and mujstest is created NOTE: it is not included in the produced binary packages NOTE: https://www.openwall.com/lists/oss-security/2016/10/16/19 CVE-2016-10246 (Buffer overflow in the main function in jstest_main.c in Mujstest in A ...) - mupdf 1.11+ds1-1 (unimportant) [wheezy] - mupdf <not-affected> (Vulnerable code not present) - [stretch] - mupdf <not-affected> (Vulnerable code not present) + [stretch] - mupdf <ignored> (Vulnerable code not packaged or compiled) NOTE: Although jstest_main.c compiled during build and mujstest is created NOTE: it is not included in the produced binary packages NOTE: https://www.openwall.com/lists/oss-security/2016/10/16/20 |