[Git][security-tracker-team/security-tracker][master] 2 commits: Add information for sources on CVE-2020-2153{1,2}

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Sep 17 09:48:48 BST 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5e5451b3 by Salvatore Bonaccorso at 2021-09-17T10:48:31+02:00
Add information for sources on CVE-2020-2153{1,2}

- - - - -
648b5a69 by Salvatore Bonaccorso at 2021-09-17T10:48:32+02:00
Add CVE-2020-21533/fig2dev

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -78000,14 +78000,20 @@ CVE-2020-21535 (fig2dev 3.2.7b contains a segmentation fault in the gencgm_start
 CVE-2020-21534 (fig2dev 3.2.7b contains a global buffer overflow in the get_line funct ...)
 	TODO: check
 CVE-2020-21533 (fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject ...)
-	TODO: check
+	- fig2dev 1:3.2.7b-3
+	[buster] - fig2dev 1:3.2.7a-5+deb10u2
+	- transfig <removed>
+	NOTE: https://sourceforge.net/p/mcj/tickets/59/
+	NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/41b9bb838a3d544539f6e68aa4f87d70ef7d45ce/ (3.2.8)
 CVE-2020-21532 (fig2dev 3.2.7b contains a global buffer overflow in the setfigfont fun ...)
 	- fig2dev 1:3.2.8-1
+	- transfig <removed>
 	NOTE: https://sourceforge.net/p/mcj/tickets/64/
 	NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/421afa17d8cb8dafcaf3e6044a70790fa4fe307b/ (3.2.8)
 	NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/00cdedac7a0b029846dee891769a1e77df83a01b/ (3.2.8)
 CVE-2020-21531 (fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_i ...)
 	- fig2dev 1:3.2.8-1
+	- transfig <removed>
 	NOTE: https://sourceforge.net/p/mcj/tickets/63/
 	NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/2f8d1ae9763dcdc99b88a2b14849fe37174bcd69/ (3.2.8)
 CVE-2020-21530 (fig2dev 3.2.7b contains a segmentation fault in the read_objects funct ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9fb8c88b6a7a5ba663f601ba940e4f972b4664f0...648b5a692d32559127abc6e1766717a2cac8e634

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9fb8c88b6a7a5ba663f601ba940e4f972b4664f0...648b5a692d32559127abc6e1766717a2cac8e634
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210917/057ce592/attachment.htm>


More information about the debian-security-tracker-commits mailing list