Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5b9c4183 by Salvatore Bonaccorso at 2022-01-01T10:22:03+01:00
Add initial tracking for two mdbtools issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -104,9 +104,13 @@ CVE-2021-45929 (Wasm3 0.5.0 has an out-of-bounds write in
CompileBlock (called f
CVE-2021-45928 (libjxl before 0.6, as used in libvips 8.11 through 8.11.2 and
other pr ...)
TODO: check
CVE-2021-45927 (MDB Tools (aka mdbtools) 0.9.2 has a stack-based buffer
overflow (at 0 ...)
- TODO: check
+ - mdbtools <undetermined>
+ NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36187
+ TODO: check, possibly fixed in 0.9.3, but unclear fixing commit,
related to 9b6b52cc8c5838cffeee9388c04890fe1eb73b52?
CVE-2021-45926 (MDB Tools (aka mdbtools) 0.9.2 has a stack-based buffer
overflow (at 0 ...)
- TODO: check
+ - mdbtools <undetermined>
+ NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35972
+ TODO: check, possibly fixed in 0.9.3, but unclear fixing commit,
related to 9b6b52cc8c5838cffeee9388c04890fe1eb73b52?
CVE-2021-4196
RESERVED
CVE-2021-4195
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b9c418305300757ec93d824f9ab5ba46430ae02
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b9c418305300757ec93d824f9ab5ba46430ae02
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
