[Git][security-tracker-team/security-tracker][master] add gdcm commit references

Sat, 04 May 2024 10:50:52 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
9c9be6ff by Moritz Muehlenhoff at 2024-05-04T19:50:05+02:00
add gdcm commit references

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4245,6 +4245,7 @@ CVE-2024-25569 (An out-of-bounds read vulnerability 
exists in the RAWCodec::Deco
        [bullseye] - gdcm <no-dsa> (Minor issue)
        [buster] - gdcm <postponed> (Minor issue, follow bullseye)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1944
+       NOTE: 
https://github.com/malaterre/GDCM/commit/dda17aa8d5939e4e255ebba67aacf34b09d88692
 (v3.0.24)
 CVE-2024-25026 (IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere 
Applicatio ...)
        NOT-FOR-US: IBM
 CVE-2024-22391 (A heap-based buffer overflow vulnerability exists in the 
LookupTable:: ...)
@@ -4253,12 +4254,14 @@ CVE-2024-22391 (A heap-based buffer overflow 
vulnerability exists in the LookupT
        [bullseye] - gdcm <no-dsa> (Minor issue)
        [buster] - gdcm <postponed> (Minor issue, follow bullseye)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1924
+       NOTE: 
https://github.com/malaterre/GDCM/commit/21a793095ab3aecb794c56439873e5b181ea9d91
 (v3.0.24)
 CVE-2024-22373 (An out-of-bounds write vulnerability exists in the 
JPEG2000Codec::Deco ...)
        - gdcm <unfixed>
        [bookworm] - gdcm <no-dsa> (Minor issue)
        [bullseye] - gdcm <no-dsa> (Minor issue)
        [buster] - gdcm <postponed> (Minor issue, follow bullseye)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1935
+       NOTE: 
https://github.com/malaterre/GDCM/commit/371c2d937e37b08a46eeb0628c553ce4608a45df
 (v3.0.24)
 CVE-2024-22144 (Improper Control of Generation of Code ('Code Injection') 
vulnerabilit ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-1347 (An issue has been discovered in GitLab CE/EE affecting all 
versions be ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c9be6ff7cf37cd5dc54051bc015fb34a921e3ed

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c9be6ff7cf37cd5dc54051bc015fb34a921e3ed
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to