[Git][security-tracker-team/security-tracker][master] Mark tiff's CVE-2023-52355 and CVE-2023-6277 as ignored in bullseye lts

Tue, 11 Feb 2025 06:57:21 -0800 


Santiago R.R. pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
565b3346 by Santiago Ruano Rincón at 2025-02-11T11:56:41-03:00
Mark tiff's CVE-2023-52355 and CVE-2023-6277 as ignored in bullseye lts

Sync'ing with bookworm.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -107672,7 +107672,7 @@ CVE-2023-52356 (A segment fault (SEGV) flaw was found 
in libtiff that could be t
 CVE-2023-52355 (An out-of-memory flaw was found in libtiff that could be 
triggered by  ...)
        - tiff 4.5.1+git230720-4
        [bookworm] - tiff <ignored> (Minor issue, no code fix, just updated 
docs)
-       [bullseye] - tiff <no-dsa> (Minor issue)
+       [bullseye] - tiff <ignored> (Minor issue, no code fix, just updated 
docs)
        [buster] - tiff <ignored> (Minor issue, DoS)
        NOTE: https://gitlab.com/libtiff/libtiff/-/issues/621
        NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/553
@@ -119509,7 +119509,7 @@ CVE-2023-6293 (Prototype Pollution in GitHub 
repository robinbuschmann/sequelize
 CVE-2023-6277 (An out-of-memory flaw was found in libtiff. Passing a crafted 
tiff fil ...)
        - tiff 4.5.1+git230720-2 (bug #1056751)
        [bookworm] - tiff <ignored> (Minor issue; will cause compatibility 
issue with libimager-perl, cf #1057270)
-       [bullseye] - tiff <no-dsa> (Minor issue; will cause compatibility issue 
with libimager-perl, cf #1057270)
+       [bullseye] - tiff <ignored> (Minor issue; will cause compatibility 
issue with libimager-perl, cf #1057270)
        [buster] - tiff <ignored> (Minor issue; OOM DoS)
        NOTE: https://gitlab.com/libtiff/libtiff/-/issues/614
        NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/545



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/565b3346923950156025980ed2881840bcea392a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/565b3346923950156025980ed2881840bcea392a
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to