hdf5 undetermined cves

To: team@security.debian.org
Cc: debian-lts@lists.debian.org
Subject: hdf5 undetermined cves
From: Hugo Lefeuvre <hle@debian.org>
Date: Tue, 19 Mar 2019 18:25:56 +0100
Message-id: <[🔎] 20190319172556.GA1329@behemoth.owl.eu.com.local>

Hi,

I just noticed the large number of undetermined issues affecting the hdf5
source package in the tracker. I have tried to reproduce the latest one on
buster, successfully (CVE-2019-9152, I have updated the tracker).

I wonder why all these issues were marked undetermined in the first place.

Did I miss something?

regards,
Hugo

-- 
                Hugo Lefeuvre (hle)    |    www.owl.eu.com
RSA4096_ 360B 03B3 BF27 4F4D 7A3F D5E8 14AA 1EB8 A247 3DFD
ed25519_ 37B2 6D38 0B25 B8A2 6B9F 3A65 A36F 5357 5F2D DC4C

Attachment: signature.asc
Description: PGP signature

Reply to:

Follow-Ups:
- Re: hdf5 undetermined cves
  - From: Markus Koschany <apo@debian.org>

Prev by Date: [SECURITY] CVE-2019-7443 (kauth) in kdelibs
Next by Date: Re: [SECURITY] CVE-2019-7443 (kauth) in kdelibs
Previous by thread: Re: [SECURITY] CVE-2019-7443 (kauth) in kdelibs
Next by thread: Re: hdf5 undetermined cves
Index(es):
- Date
- Thread