Bug#874302: liblouis: CVE-2017-13738 CVE-2017-13739 CVE-2017-13740 CVE-2017-13741 CVE-2017-13742 CVE-2017-13743 CVE-2017-13744

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#874302: liblouis: CVE-2017-13738 CVE-2017-13739 CVE-2017-13740 CVE-2017-13741 CVE-2017-13742 CVE-2017-13743 CVE-2017-13744
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 04 Sep 2017 22:09:35 +0200
Message-id: <[🔎] 150455577501.21518.15830040225740156275.reportbug@eldamar.local>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 874302@bugs.debian.org

Source: liblouis
Version: 3.0.0-3
Severity: important
Tags: upstream security fixed-upstream

Hi

The new upstream version 3.3.0 fixes severaly CVEs for liblouis:

CVE-2017-13738
CVE-2017-13739
CVE-2017-13740
CVE-2017-13741
CVE-2017-13742
CVE-2017-13743
CVE-2017-13744

https://github.com/liblouis/liblouis/releases/tag/v3.3.0

The isses were marked no-dsa for stretch and jessie, but a fix is
welcomed via an upcoming point release if possible.

Regards,
Salvatore

Reply to:

Follow-Ups:
- Bug#874302: liblouis: Debdiff for liblouis CVEs 38, 39, 40 , 42 and 44 with prefix (CVE-2017-1137*)
  - From: "Leonidas S. Barbosa" <leo.barbosa@canonical.com>
- Bug#874302: marked as done (liblouis: CVE-2017-13738 CVE-2017-13739 CVE-2017-13740 CVE-2017-13741 CVE-2017-13742 CVE-2017-13743 CVE-2017-13744)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: RE: gnome-orca version policy?
Next by Date: Bug#874302: liblouis: Debdiff for liblouis CVEs 38, 39, 40 , 42 and 44 with prefix (CVE-2017-1137*)
Previous by thread: RE: gnome-orca version policy?
Next by thread: Bug#874302: liblouis: Debdiff for liblouis CVEs 38, 39, 40 , 42 and 44 with prefix (CVE-2017-1137*)
Index(es):
- Date
- Thread