[Git][security-tracker-team/security-tracker][master] Add CVE-2022-1253/libde265
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Apr 8 21:27:55 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b7cf6fa2 by Salvatore Bonaccorso at 2022-04-08T22:27:09+02:00
Add CVE-2022-1253/libde265
Note, despite the description the fixing commit is not in the v1.0.8
release upstream.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -449,7 +449,9 @@ CVE-2022-1255
CVE-2022-1254
RESERVED
CVE-2022-1253 (Heap-based Buffer Overflow in GitHub repository strukturag/libde265 pr ...)
- TODO: check
+ - libde265 <unfixed>
+ NOTE: https://huntr.dev/bounties/1-other-strukturag/libde265/
+ NOTE: https://github.com/strukturag/libde265/commit/8e89fe0e175d2870c39486fdd09250b230ec10b8
CVE-2022-1252
RESERVED
CVE-2022-1251
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7cf6fa25e16c18d0f39c0b67c4b4040c9a6f5ca
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7cf6fa25e16c18d0f39c0b67c4b4040c9a6f5ca
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220408/055882c2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list