[Git][security-tracker-team/security-tracker][master] Add CVE-2022-30595/pillow
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 26 09:26:43 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
33594d41 by Salvatore Bonaccorso at 2022-05-26T10:26:22+02:00
Add CVE-2022-30595/pillow
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2940,7 +2940,8 @@ CVE-2022-30597 (A flaw was found in moodle where the description user field was
CVE-2022-30596 (A flaw was found in moodle where ID numbers displayed when bulk alloca ...)
- moodle <removed>
CVE-2022-30595 (libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow i ...)
- TODO: check
+ - pillow <unfixed>
+ NOTE: https://pillow.readthedocs.io/en/stable/releasenotes/9.1.1.html#security
CVE-2022-30593
RESERVED
CVE-2022-30592 (liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33594d416f23b9a2d776adf712452d37ec8e2a77
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33594d416f23b9a2d776adf712452d37ec8e2a77
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220526/d2bcc14b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list