Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a131af39 by Moritz Muehlenhoff at 2023-04-19T09:08:52+02:00
bullseye triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -304,12 +304,14 @@ CVE-2023-2110
RESERVED
CVE-2023-30775
RESERVED
- - tiff 4.5.0-2
+ - tiff 4.5.0-2 (unimportant)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/464
NOTE:
https://gitlab.com/libtiff/libtiff/-/afd7086090dafd3949afd172822cbcec4ed17d56
(v4.5.0rc1)
+ NOTE: Crash in CLI tool, no security impact
CVE-2023-30774
RESERVED
- tiff 4.5.0-2
+ [bullseye] - tiff <no-dsa> (Minor issue)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/463
NOTE:
https://gitlab.com/libtiff/libtiff/-/f00484b9519df933723deb38fff943dc291a793d
(v4.5.0rc1)
CVE-2023-2109 (Cross-site Scripting (XSS) - DOM in GitHub repository
chatwoot/chatwoo ...)
@@ -48382,6 +48384,7 @@ CVE-2022-41728
RESERVED
CVE-2022-41727 (An attacker can craft a malformed TIFF image which will
consume a sign ...)
- golang-golang-x-image 0.5.0-1
+ [bullseye] - golang-golang-x-image <no-dsa> (Minor issue)
[buster] - golang-golang-x-image <postponed> (Limited support, minor
issue, DoS)
CVE-2022-41726
RESERVED
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a131af3944b34f0918abf86cfe6e9bdfdf62cabc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a131af3944b34f0918abf86cfe6e9bdfdf62cabc
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
