[Git][security-tracker-team/security-tracker][master] 2 commits: Marked imagemagick CVE-2023-1906 as no-dsa for buster since it is a denial of...

Ola Lundqvist (@opal) opal at debian.org
Sun Apr 23 21:35:08 BST 2023 


Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6ba5e905 by Ola Lundqvist at 2023-04-23T22:27:04+02:00
Marked imagemagick CVE-2023-1906 as no-dsa for buster since it is a denial of service vulnerability and this follows the practice for other vulnerabilities of this kind for this package.

- - - - -
48278e1c by Ola Lundqvist at 2023-04-23T22:34:40+02:00
Marked slic3r CVE-2022-36788 as no-dsa for buster.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4281,6 +4281,7 @@ CVE-2023-1907
 	RESERVED
 CVE-2023-1906 (A heap-based buffer overflow issue was discovered in ImageMagick's Imp ...)
 	- imagemagick <unfixed> (bug #1034373)
+	[buster] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-35q2-86c7-9247
 	NOTE: https://github.com/ImageMagick/ImageMagick6/commit/e30c693b37c3b41723f1469d1226a2c814ca443d (ImageMagick 6.9.12-84)
 CVE-2023-1905
@@ -57762,6 +57763,7 @@ CVE-2022-37343
 	RESERVED
 CVE-2022-36788 (A heap-based buffer overflow vulnerability exists in the TriangleMesh  ...)
 	- slic3r <unfixed>
+	[buster] - slic3r <no-dsa> (Minor issue)
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1593
 CVE-2022-36420
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d13ba436836b130648f183416a6b1d4931f31c2b...48278e1c2cd64fed63cf12c1b00b16263b724ced

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d13ba436836b130648f183416a6b1d4931f31c2b...48278e1c2cd64fed63cf12c1b00b16263b724ced
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230423/cef81a3b/attachment.htm>

More information about the debian-security-tracker-commits mailing list