[Git][security-tracker-team/security-tracker][master] Add CVE-2021-45341/librecad

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jan 26 08:49:13 GMT 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0021a70 by Salvatore Bonaccorso at 2022-01-26T09:48:50+01:00
Add CVE-2021-45341/librecad

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8124,7 +8124,10 @@ CVE-2021-45343 (In LibreCAD 2.2.0, a NULL pointer dereference in the HATCH handl
 CVE-2021-45342 (A buffer overflow vulnerability in CDataList of the jwwlib component o ...)
 	TODO: check
 CVE-2021-45341 (A buffer overflow vulnerability in CDataMoji of the jwwlib component o ...)
-	TODO: check
+	- librecad <unfixed>
+	NOTE: https://github.com/LibreCAD/LibreCAD/issues/1462
+	NOTE: https://github.com/LibreCAD/LibreCAD/pull/1463
+	NOTE: Fixed by: https://github.com/LibreCAD/LibreCAD/commit/f3502963eaf379a429bc9da73c1224c5db649997
 CVE-2021-45340 (In Libsixel prior to and including v1.10.3, a NULL pointer dereference ...)
 	- libsixel <unfixed>
 	NOTE: https://github.com/libsixel/libsixel/issues/51



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0021a709fca17fc50c9d8616a05b1de82fc1bee

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0021a709fca17fc50c9d8616a05b1de82fc1bee
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220126/5233d30c/attachment.htm>


More information about the debian-security-tracker-commits mailing list