[Git][security-tracker-team/security-tracker][master] Track some issues for libredwg, itp'ed

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 22 21:38:51 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1c777c23 by Salvatore Bonaccorso at 2022-06-22T22:38:20+02:00
Track some issues for libredwg, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3030,11 +3030,11 @@ CVE-2022-33036
 CVE-2022-33035
 	RESERVED
 CVE-2022-33034 (LibreDWG v0.12.4.4608 was discovered to contain a stack overflow via t ...)
-	TODO: check
+	- libredwg <itp> (bug #595191)
 CVE-2022-33033 (LibreDWG v0.12.4.4608 was discovered to contain a double-free via the  ...)
-	TODO: check
+	- libredwg <itp> (bug #595191)
 CVE-2022-33032 (LibreDWG v0.12.4.4608 was discovered to contain a heap-buffer-overflow ...)
-	TODO: check
+	- libredwg <itp> (bug #595191)
 CVE-2022-33031
 	RESERVED
 CVE-2022-33030
@@ -3042,13 +3042,13 @@ CVE-2022-33030
 CVE-2022-33029
 	RESERVED
 CVE-2022-33028 (LibreDWG v0.12.4.4608 was discovered to contain a heap buffer overflow ...)
-	TODO: check
+	- libredwg <itp> (bug #595191)
 CVE-2022-33027 (LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free  ...)
-	TODO: check
+	- libredwg <itp> (bug #595191)
 CVE-2022-33026 (LibreDWG v0.12.4.4608 was discovered to contain a heap buffer overflow ...)
-	TODO: check
+	- libredwg <itp> (bug #595191)
 CVE-2022-33025 (LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free  ...)
-	TODO: check
+	- libredwg <itp> (bug #595191)
 CVE-2022-33024 (There is an Assertion `int decode_preR13_entities(BITCODE_RL, BITCODE_ ...)
 	TODO: check
 CVE-2022-33023



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c777c23beccd0b10babda4ce4c683a4b90f09ea

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c777c23beccd0b10babda4ce4c683a4b90f09ea
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220622/9bb373e3/attachment.htm>

More information about the debian-security-tracker-commits mailing list