[Git][security-tracker-team/security-tracker][master] sync status for remaining rlottie issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Jun 2 16:00:11 BST 2021



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f022c234 by Moritz Mühlenhoff at 2021-06-02T16:58:58+02:00
sync status for remaining rlottie issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5804,22 +5804,22 @@ CVE-2021-31325
 CVE-2021-31324 (The unprivileged user portal part of CentOS Web Panel is affected by a ...)
 	NOT-FOR-US: CentOS Web Panel
 CVE-2021-31323 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram  ...)
-	- rlottie <unfixed> (bug #988885)
+	- rlottie <not-affected> (Doesn't affect rlottie as packaged in Debia, bug #988885)
 	NOTE: https://www.shielder.it/advisories/telegram-rlottie-lottieparserimpl-parsedashproperty-heap-buffer-overflow/
 CVE-2021-31322 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram  ...)
-	- rlottie <unfixed> (bug #988885)
+	- rlottie <not-affected> (Doesn't affect rlottie as packaged in Debia, bug #988885)
 	NOTE: https://www.shielder.it/advisories/telegram-rlottie-lotgradient-populate-heap-buffer-overflow/
 CVE-2021-31321 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram  ...)
 	- rlottie 0.1+dfsg-2 (bug #988885)
 	NOTE: https://www.shielder.it/advisories/telegram-rlottie-gray_split_cubic-stack-buffer-overflow/
 CVE-2021-31320 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram  ...)
-	- rlottie <unfixed> (bug #988885)
+	- rlottie <not-affected> (Doesn't affect rlottie as packaged in Debia, bug #988885)
 	NOTE: https://www.shielder.it/advisories/telegram-rlottie-vgradientcache-generategradientcolortable-heap-buffer-overflow/
 CVE-2021-31319 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram  ...)
-	- rlottie <unfixed> (bug #988885)
+	- rlottie <not-affected> (Doesn't affect rlottie as packaged in Debia, bug #988885)
 	NOTE: https://www.shielder.it/advisories/telegram-rlottie-lotgradient-populate-integer-overflow/
 CVE-2021-31318 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram  ...)
-	- rlottie <unfixed> (bug #988885)
+	- rlottie <not-affected> (Doesn't affect rlottie as packaged in Debia, bug #988885)
 	NOTE: https://www.shielder.it/advisories/telegram-rlottie-lotcomplayeritem-lotcomplayeritem-type-confusion/
 CVE-2021-31317 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram  ...)
 	- rlottie 0.1+dfsg-2 (bug #988885)
@@ -5827,7 +5827,7 @@ CVE-2021-31317 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Tel
 CVE-2021-31316 (The unprivileged user portal part of CentOS Web Panel is affected by a ...)
 	NOT-FOR-US: CentOS Web Panel
 CVE-2021-31315 (Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram  ...)
-	- rlottie <unfixed> (bug #988885)
+	- rlottie <not-affected> (Doesn't affect rlottie as packaged in Debia, bug #988885)
 	NOTE: https://www.shielder.it/advisories/telegram-rlottie-blit-stack-buffer-overflow/
 CVE-2021-31314
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f022c23482e8b29837a27b601bd9f927417c8fe5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f022c23482e8b29837a27b601bd9f927417c8fe5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210602/0ef0fc83/attachment.htm>


More information about the debian-security-tracker-commits mailing list