[Git][security-tracker-team/security-tracker][master] CVE-2020-14153: Add reason for not-affected
Salvatore Bonaccorso
carnil at debian.org
Mon Jul 27 19:56:08 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6cc6c9a0 by Salvatore Bonaccorso at 2020-07-27T20:55:17+02:00
CVE-2020-14153: Add reason for not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4407,7 +4407,7 @@ CVE-2020-14154 (Mutt before 1.14.3 proceeds with a connection even if, in respon
NOTE: Negligible security impact
CVE-2020-14153 (In IJG JPEG (aka libjpeg) before 9d, jdhuff.c has an out-of-bounds arr ...)
- libjpeg9 1:9d-1
- - libjpeg-turbo <not-affected>
+ - libjpeg-turbo <not-affected> (Vulnerable code not present; problematic condition cannot be reached)
NOTE: https://github.com/libjpeg-turbo/libjpeg-turbo/issues/445
CVE-2020-14152 (In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs. ...)
- libjpeg9 1:9d-1 (low)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6cc6c9a0053fea56eba030953620be1a72cf8e88
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6cc6c9a0053fea56eba030953620be1a72cf8e88
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200727/d9dac35b/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list