Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cc5c358f by Salvatore Bonaccorso at 2023-06-18T13:38:33+02:00
Add CVE-2014-125106/nanopb
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,7 +13,8 @@ CVE-2023-35809 (An issue was discovered in SugarCRM
Enterprise before 11.0.6 and
CVE-2023-35808 (An issue was discovered in SugarCRM Enterprise before 11.0.6
and 12.x ...)
NOT-FOR-US: SugarCRM
CVE-2014-125106 (Nanopb before 0.3.1 allows size_t overflows in pb_dec_bytes
and pb_dec ...)
- TODO: check
+ - nanopb <not-affected> (Fixed before initial upload to Debian)
+ NOTE:
https://github.com/nanopb/nanopb/commit/d2099cc8f1adb33d427a44a5e32ed27b647c7168
(nanopb-0.3.1)
CVE-2023-3295 (The Unlimited Elements For Elementor (Free Widgets, Addons,
Templates) ...)
NOT-FOR-US: WordPress plugin
CVE-2023-35790 (An issue was discovered in dec_patch_dictionary.cc in libjxl
before 0. ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cc5c358f821285174b0975aebc06ca47735041cf
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cc5c358f821285174b0975aebc06ca47735041cf
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
