[Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2023-2447{2,3} and CVE-2023-22845
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Apr 10 13:32:00 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
818195f8 by Salvatore Bonaccorso at 2023-04-10T14:31:15+02:00
Add Debian bug references for CVE-2023-2447{2,3} and CVE-2023-22845
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -16798,20 +16798,20 @@ CVE-2023-24531
RESERVED
CVE-2023-24473 (An information disclosure vulnerability exists in the TGAInput::read_t ...)
[experimental] - openimageio 2.4.9.0+dfsg-1
- - openimageio <unfixed>
+ - openimageio <unfixed> (bug #1034150)
NOTE: https://github.com/OpenImageIO/oiio/pull/3768
NOTE: https://github.com/OpenImageIO/oiio/commit/759fcd392d130c12ae476857e1ed2a91bcf2686b (master)
NOTE: https://github.com/OpenImageIO/oiio/commit/209bb4c327b2a8be08f41c1a213dfe9001f0b5d0 (v2.4.8.1)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1707
CVE-2023-24472 (A denial of service vulnerability exists in the FitsOutput::close() fu ...)
[experimental] - openimageio 2.4.9.0+dfsg-1
- - openimageio <unfixed>
+ - openimageio <unfixed> (bug #1034151)
NOTE: https://github.com/OpenImageIO/oiio/commit/f8db9f38d18a66889f444031051e0f0acaa611b6 (master)
NOTE: https://github.com/OpenImageIO/oiio/commit/a39692256b060b543f53646c6a807c81b79c5750 (v2.4.8.1)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1709
CVE-2023-22845 (An out-of-bounds read vulnerability exists in the TGAInput::decode_pix ...)
[experimental] - openimageio 2.4.9.0+dfsg-1
- - openimageio <unfixed>
+ - openimageio <unfixed> (bug #1034150)
NOTE: https://github.com/OpenImageIO/oiio/pull/3768
NOTE: https://github.com/OpenImageIO/oiio/commit/759fcd392d130c12ae476857e1ed2a91bcf2686b (master)
NOTE: https://github.com/OpenImageIO/oiio/commit/209bb4c327b2a8be08f41c1a213dfe9001f0b5d0 (v2.4.8.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/818195f891444f2dfb6f95a77acc83d14b76ebac
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/818195f891444f2dfb6f95a77acc83d14b76ebac
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230410/0a6adff0/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list