Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
909f3035 by Moritz Muehlenhoff at 2023-07-14T15:29:34+02:00
new libjpeg issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23,9 +23,15 @@ CVE-2023-37849 (A DLL hijacking vulnerability in Panda
Security VPN for Windows
CVE-2023-37839 (An arbitrary file upload vulnerability in
/dede/file_manage_control.ph ...)
NOT-FOR-US: Dede CMS
CVE-2023-37837 (libjpeg commit db33a6e was discovered to contain a heap buffer
overflo ...)
- TODO: check
+ - libjpeg <unfixed>
+ [bookworm] - libjpeg <no-dsa> (Minor issue)
+ [bullseye] - libjpeg <no-dsa> (Minor issue)
+ NOTE: https://github.com/thorfdbg/libjpeg/issues/87#BUG0
CVE-2023-37836 (libjpeg commit db33a6e was discovered to contain a reachable
assertion ...)
- TODO: check
+ - libjpeg <unfixed>
+ [bookworm] - libjpeg <no-dsa> (Minor issue)
+ [bullseye] - libjpeg <no-dsa> (Minor issue)
+ NOTE: https://github.com/thorfdbg/libjpeg/issues/87#BUG1
CVE-2023-37723 (Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were
discovered ...)
NOT-FOR-US: Tenda
CVE-2023-37722 (Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were
discovered ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/909f30355de70463855d7cea3cb0409851ceec85
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/909f30355de70463855d7cea3cb0409851ceec85
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
