Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: a0ef9411 by Salvatore Bonaccorso at 2023-05-06T21:31:33+02:00 Track fixed bzip3 issues via unstable via cherry-picked fixes - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -5432,22 +5432,22 @@ CVE-2023-XXXX [https://rustsec.org/advisories/RUSTSEC-2023-0031.html] NOTE: https://github.com/mvdnes/spin-rs/issues/148 CVE-2023-29421 (An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is ...) [experimental] - bzip3 1.2.3-1 - - bzip3 <unfixed> (bug #1034177) + - bzip3 1.2.2-2 (bug #1034177) NOTE: https://github.com/kspalaiologos/bzip3/issues/94 NOTE: https://github.com/kspalaiologos/bzip3/commit/33b1951f153c3c5dc8ed736b9110437e1a619b7d (1.2.3) CVE-2023-29420 (An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is ...) [experimental] - bzip3 1.2.3-1 - - bzip3 <unfixed> (bug #1034177) + - bzip3 1.2.2-2 (bug #1034177) NOTE: https://github.com/kspalaiologos/bzip3/commit/bb06deb85f1c249838eb938e0dab271d4194f8fa (1.2.3) NOTE: https://github.com/kspalaiologos/bzip3/issues/92 CVE-2023-29419 (An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is ...) [experimental] - bzip3 1.2.3-1 - - bzip3 <unfixed> (bug #1034177) + - bzip3 1.2.2-2 (bug #1034177) NOTE: https://github.com/kspalaiologos/bzip3/commit/8ec8ce7d3d58bf42dabc47e4cc53aa27051bd602 (1.2.3) NOTE: https://github.com/kspalaiologos/bzip3/issues/92 CVE-2023-29418 (An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is ...) [experimental] - bzip3 1.2.3-1 - - bzip3 <unfixed> (bug #1034177) + - bzip3 1.2.2-2 (bug #1034177) NOTE: https://github.com/kspalaiologos/bzip3/commit/aae16d107f804f69000c09cd92027a140968cc9d (1.2.3) NOTE: https://github.com/kspalaiologos/bzip3/issues/92 CVE-2023-29417 (An issue was discovered in libbzip3.a in bzip3 1.2.2. There is a bz3_d ...) @@ -5455,11 +5455,11 @@ CVE-2023-29417 (An issue was discovered in libbzip3.a in bzip3 1.2.2. There is a NOTE: https://github.com/kspalaiologos/bzip3/issues/97 NOTE: Issue between library and example code not correctly using the API CVE-2023-29416 (An issue was discovered in libbzip3.a in bzip3 before 1.3.0. A bz3_dec ...) - - bzip3 <unfixed> (bug #1034177) + - bzip3 1.2.2-2 (bug #1034177) NOTE: https://github.com/kspalaiologos/bzip3/commit/bfa5bf82b53715dfedf048e5859a46cf248668ff (1.3.0) NOTE: https://github.com/kspalaiologos/bzip3/issues/92 CVE-2023-29415 (An issue was discovered in libbzip3.a in bzip3 before 1.3.0. A denial ...) - - bzip3 <unfixed> (bug #1034177) + - bzip3 1.2.2-2 (bug #1034177) NOTE: https://github.com/kspalaiologos/bzip3/issues/95 NOTE: https://github.com/kspalaiologos/bzip3/commit/56c24ca1f8f25e648d42154369b6962600f76465 (1.3.0) CVE-2023-29414 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0ef9411c48dae041950ebb7f1ebaf62e7c8ae51 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0ef9411c48dae041950ebb7f1ebaf62e7c8ae51 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
