Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a793f062 by Salvatore Bonaccorso at 2022-05-13T06:17:27+02:00
Track fixed version for CVE-2022-28085 and CVE-2022-27114 via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7333,7 +7333,7 @@ CVE-2022-28087
CVE-2022-28086
RESERVED
CVE-2022-28085 (A flaw was found in htmldoc commit 31f7804. A heap buffer
overflow in ...)
- - htmldoc <unfixed> (unimportant)
+ - htmldoc 1.9.15-2 (unimportant)
NOTE: https://github.com/michaelrsweet/htmldoc/issues/480
NOTE:
https://github.com/michaelrsweet/htmldoc/commit/46c8ec2b9bccb8ccabff52d998c5eee77a228348
NOTE: Crash in CLI tool, no security impact
@@ -10089,7 +10089,7 @@ CVE-2022-27116
CVE-2022-27115 (In Studio-42 elFinder 2.1.60, there is a vulnerability that
causes rem ...)
NOT-FOR-US: Studio-42 elFinder
CVE-2022-27114 (There is a vulnerability in htmldoc 1.9.16. In image_load_jpeg
functio ...)
- - htmldoc <unfixed>
+ - htmldoc 1.9.15-2
[bullseye] - htmldoc <no-dsa> (Minor issue)
[buster] - htmldoc <no-dsa> (Minor issue)
NOTE: https://github.com/michaelrsweet/htmldoc/issues/471
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a793f06292ed5bd2d0382d19c0157d0a7643f52f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a793f06292ed5bd2d0382d19c0157d0a7643f52f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
