Bug#991370: libmatio: CVE-2020-36428
Salvatore Bonaccorso
carnil at debian.org
Wed Mar 30 20:22:31 BST 2022
Source: libmatio
Source-Version: 1.5.22-1
Hi Sébastien,
Thanks a lot for the quick followups!
On Wed, Mar 30, 2022 at 09:14:06PM +0200, Sébastien Villemot wrote:
> Le mercredi 30 mars 2022 à 21:08 +0200, Sébastien Villemot a écrit :
> > > The OSV-2020-799.yaml cannot be taken into account because it was
> > > marked as such as consequence of
> > > https://github.com/google/oss-fuzz-vulns/issues/12 as far i can see.
> > > Actually it looks that tbeu considers it invalid issue? If this turned
> > > not to be true, what is the fix?
> >
> > If upstream is wrong, then I have no idea what would be the fix.
>
> I forgot to mention that tbeu is the upstream maintainer.
Yes and this is part of why I'm confused about the status, because it
was the upstream maintainer claiming the issue is invalid. But let's
follow that then.
Regards,
Salvatore
More information about the debian-science-maintainers
mailing list