[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Jul 8 20:36:14 BST 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
409db979 by Moritz Mühlenhoff at 2022-07-08T21:33:43+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -27757,7 +27757,7 @@ CVE-2022-0685 (Use of Out-of-range Pointer Offset in GitHub repository vim/vim p
 CVE-2022-0684 (The WP Home Page Menu WordPress plugin before 3.1 does not sanitise an ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-46700 (In libsixel 1.8.6, sixel_encoder_output_without_macro (called from six ...)
-	- libsixel <unfixed>
+	- libsixel <unfixed> (bug #1014469)
 	[bullseye] - libsixel <no-dsa> (Minor issue)
 	[buster] - libsixel <no-dsa> (Minor issue)
 	[stretch] - libsixel <no-dsa> (Minor issue)
@@ -42946,7 +42946,7 @@ CVE-2021-44961 (A memory leakage flaw exists in the class PerimeterGenerator of
 	NOTE: https://hackmd.io/nDT_UKLyRQendxDwil9A4w
 	TODO: check upstream commit
 CVE-2021-44960 (In SVGPP SVG++ library 1.3.0, the XMLDocument::getRoot function in the ...)
-	- svgpp <unfixed>
+	- svgpp <unfixed> (bug #1014599)
 	[bullseye] - svgpp <no-dsa> (Minor issue)
 	[buster] - svgpp <no-dsa> (Minor issue)
 	NOTE: https://github.com/svgpp/svgpp/issues/101
@@ -43954,7 +43954,7 @@ CVE-2021-44650 (Zoho ManageEngine M365 Manager Plus before Build 4419 allows rem
 CVE-2021-44649 (Django CMS 3.7.3 does not validate the plugin_type parameter while gen ...)
 	- python-django-cms <itp> (bug #516183)
 CVE-2021-44648 (GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulner ...)
-	- gdk-pixbuf <unfixed>
+	- gdk-pixbuf <unfixed> (bug #1014600)
 	[bullseye] - gdk-pixbuf <no-dsa> (Minor issue)
 	[buster] - gdk-pixbuf <not-affected> (Vulnerable code introduced later)
 	[stretch] - gdk-pixbuf <not-affected> (Vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/409db97977b4156f99395f74609ca827e05bdeab

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/409db97977b4156f99395f74609ca827e05bdeab
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220708/8a99c12e/attachment.htm>

More information about the debian-security-tracker-commits mailing list