[Git][security-tracker-team/security-tracker][master] Add upstream commit for CVE-2022-30595
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 26 09:29:00 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a004fab2 by Salvatore Bonaccorso at 2022-05-26T10:28:34+02:00
Add upstream commit for CVE-2022-30595
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2942,6 +2942,7 @@ CVE-2022-30596 (A flaw was found in moodle where ID numbers displayed when bulk
CVE-2022-30595 (libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow i ...)
- pillow <unfixed>
NOTE: https://pillow.readthedocs.io/en/stable/releasenotes/9.1.1.html#security
+ NOTE: https://github.com/python-pillow/Pillow/commit/c846cc881ebe34e3518412c2e3636433d9947280 (9.1.1)
CVE-2022-30593
RESERVED
CVE-2022-30592 (liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a004fab22b294b1be81e40f6dcc501b9be37f65b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a004fab22b294b1be81e40f6dcc501b9be37f65b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220526/72ccd79e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list