[Git][security-tracker-team/security-tracker][master] fill in details for tiff issues

Sun, 30 Jul 2023 14:33:39 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
0bdc959b by Moritz Muehlenhoff at 2023-07-30T23:33:09+02:00
fill in details for tiff issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -569,14 +569,14 @@ CVE-2023-32232 (An issue was discovered in Vasion 
PrinterLogic Client for Window
        NOT-FOR-US: Vasion
 CVE-2023-32231 (An issue was discovered in Vasion PrinterLogic Client for 
Windows befo ...)
        NOT-FOR-US: Vasion
-CVE-2023-38289 [libtiff: integer overflow in tiffcp.c]
-       - tiff <unfixed>
-       NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2224974
-       TODO: unclear details in RHBZ#2224974
-CVE-2023-38288 [libtiff: potential integer overflow in raw2tiff.c]
-       - tiff <unfixed>
-       NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2224971
-       TODO: unclear details in RHBZ#2224971
+CVE-2023-38289 [libtiff: potential integer overflow in raw2tiff.c]
+       - tiff 4.5.1+git230720-1
+       NOTE: 
https://gitlab.com/libtiff/libtiff/-/commit/4fc16f649fa2875d5c388cf2edc295510a247ee5
+       NOTE: https://gitlab.com/libtiff/libtiff/-/issues/591
+CVE-2023-38288 [libtiff: integer overflow in tiffcp.c]
+       - tiff 4.5.1+git230720-1
+       NOTE: https://gitlab.com/libtiff/libtiff/-/issues/592
+       NOTE: 
https://gitlab.com/libtiff/libtiff/-/commit/6e2dac5f904496d127c92ddc4e56eccfca25c2ee
 CVE-2023-3870
        REJECTED
 CVE-2023-3863 (A use-after-free flaw was found in nfc_llcp_find_local in 
net/nfc/llcp ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0bdc959b6a1ec130ec9970e70826f1b35d2383fc

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0bdc959b6a1ec130ec9970e70826f1b35d2383fc
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to