Re: https://security-tracker.debian.org/tracker/CVE-2014-9495
On Fri, 29 Apr 2016 08:22:04 +0200 (CEST)
harald@a-little-linux-box.at wrote:
> why is no information about source package https://packages.debian.org/source/sid/libpng1.6 displayed?
> Seems like this make debsecan think the problem persists for libpng1.6 in unstable.
https://security-tracker.debian.org/tracker/source-package/libpng1.6 exists
>> libpng1.6 (PTS) stretch, sid 1.6.21-4 fixed
and debsecan doesn't say about libpng1.6
henrich@hp:~ $ debsecan |grep png
CVE-2015-8472 libpng12-0 (remotely exploitable, high urgency)
CVE-2015-8540 libpng12-0 (remotely exploitable, high urgency)
--
Regards,
Hideki Yamane henrich @ debian.or.jp/org
http://wiki.debian.org/HidekiYamane
Reply to: