[Git][security-tracker-team/security-tracker][master] 2 commits: delete heimdal annotations conflicting with ELTS tracker
Helmut Grohne (@helmutg)
helmutg at debian.org
Tue Jan 10 13:21:34 GMT 2023
Helmut Grohne pushed to branch master at Debian Security Tracker / security-tracker
Commits:
89e9f403 by Helmut Grohne at 2023-01-10T14:21:19+01:00
delete heimdal annotations conflicting with ELTS tracker
- - - - -
b632e32d by Helmut Grohne at 2023-01-10T14:21:20+01:00
triage exiv2
* This is mostly adding <not-affected> for LTS.
* Also deleting annotations that conflict with the ELTS tracker.
* CVE-2021-31292 is a duplicate of CVE-2021-29458
* Add detail to some CVEs such as patches.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -108646,8 +108646,7 @@ CVE-2021-37624 (FreeSWITCH is a Software Defined Telecom Stack enabling the digi
CVE-2021-37623 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- exiv2 0.27.5-1
[bullseye] - exiv2 <ignored> (Minor issue)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (relevant IPTC parsing added in 0.26)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-mvc4-g5pv-4qqq
NOTE: https://github.com/Exiv2/exiv2/pull/1790
CVE-2021-37622 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
@@ -108674,15 +108673,13 @@ CVE-2021-37620 (Exiv2 is a command-line utility and C++ library for reading, wri
CVE-2021-37619 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- exiv2 0.27.5-1
[bullseye] - exiv2 <ignored> (Minor issue)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (Jp2Image::encodeJp2Header added in 0.26)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-mxw9-qx4c-6m8v
NOTE: https://github.com/Exiv2/exiv2/pull/1752
CVE-2021-37618 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- exiv2 0.27.5-1
[bullseye] - exiv2 <ignored> (Minor issue)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (Jp2Image::printStructure added in 0.26)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-583f-w9pm-99r2
NOTE: https://github.com/Exiv2/exiv2/pull/1759
CVE-2021-37617 (The Nextcloud Desktop Client is a tool to synchronize files from Nextc ...)
@@ -108691,15 +108688,13 @@ CVE-2021-37617 (The Nextcloud Desktop Client is a tool to synchronize files from
CVE-2021-37616 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- exiv2 0.27.5-1
[bullseye] - exiv2 <ignored> (Minor issue)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (resolveLens0x8ff added in 0.26)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-54f7-vvj7-545w
NOTE: https://github.com/Exiv2/exiv2/pull/1758
CVE-2021-37615 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- exiv2 0.27.5-1
[bullseye] - exiv2 <ignored> (Minor issue)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (resolveLens0x319 added in 0.26)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-h9x9-4f77-336w
NOTE: https://github.com/Exiv2/exiv2/pull/1758
CVE-2021-37614 (In certain Progress MOVEit Transfer versions before 2021.0.3 (aka 13.0 ...)
@@ -116526,8 +116521,7 @@ CVE-2021-34336
CVE-2021-34335 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- exiv2 0.27.5-1 (bug #992707)
[bullseye] - exiv2 <ignored> (Minor issue)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (resolveLens0xffff added in 0.26)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-pvjp-m4f6-q984
NOTE: https://github.com/Exiv2/exiv2/pull/1750
CVE-2021-34334 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
@@ -124505,6 +124499,7 @@ CVE-2021-31292 (An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allo
NOTE: https://github.com/Exiv2/exiv2/issues/1530
NOTE: https://github.com/Exiv2/exiv2/commit/9b7a19f957af53304655ed1efe32253a1b11a8d0
NOTE: In older releases affected code is in src/crwimage.cpp
+ NOTE: This is a duplicate of CVE-2021-29458, but mitre finds the evidence unconvincing.
CVE-2021-31291
REJECTED
CVE-2021-31290
@@ -129056,8 +129051,7 @@ CVE-2021-29624 (fastify-csrf is an open-source plugin helps developers protect t
CVE-2021-29623 (Exiv2 is a C++ library and a command-line utility to read, write, dele ...)
- exiv2 0.27.5-1 (bug #988481)
[bullseye] - exiv2 <no-dsa> (Minor issue)
- [buster] - exiv2 <no-dsa> (Minor issue)
- [stretch] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (webpimage support added 0.26)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-6253-qjwm-3q4v
NOTE: https://github.com/Exiv2/exiv2/pull/1627
CVE-2021-29622 (Prometheus is an open-source monitoring system and time series databas ...)
@@ -129433,7 +129427,7 @@ CVE-2021-29471 (Synapse is a Matrix reference homeserver written in python (pypi
CVE-2021-29470 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- exiv2 0.27.5-1 (bug #987450)
[bullseye] - exiv2 <no-dsa> (Minor issue)
- [buster] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (Jp2Image::encodeJp2Header added in 0.26)
[stretch] - exiv2 <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-8949-hhfh-j7rj
NOTE: https://github.com/Exiv2/exiv2/pull/1581
@@ -185667,8 +185661,7 @@ CVE-2020-18900 (** DISPUTED ** A heap-based buffer overflow in the libexe_io_han
NOT-FOR-US: libyal
CVE-2020-18899 (An uncontrolled memory allocation in DataBufdata(subBox.length-sizeof( ...)
- exiv2 0.27.2-6
- [buster] - exiv2 <no-dsa> (Minor issue)
- [stretch] - exiv2 <no-dsa> (Minor issue)
+ [buster] - exiv2 <not-affected> (jp2image::printStructure added in 0.26)
NOTE: https://github.com/Exiv2/exiv2/issues/742
NOTE: https://github.com/Exiv2/exiv2/commit/051b5d9df1f4669117937b7a40104404cc252993 (0.27.1)
CVE-2020-18898 (A stack exhaustion issue in the printIFDStructure function of Exiv2 0. ...)
@@ -254052,7 +254045,7 @@ CVE-2019-13504 (There is an out-of-bounds read in Exiv2::MrwImage::readMetadata
- exiv2 0.27.2-6 (low; bug #932467)
[buster] - exiv2 <ignored> (Minor issue)
[stretch] - exiv2 <ignored> (Minor issue)
- NOTE: https://github.com/Exiv2/exiv2/pull/943
+ NOTE: https://github.com/Exiv2/exiv2/pull/943 (fuzzer infrastructure)
NOTE: https://github.com/Exiv2/exiv2/pull/944
NOTE: https://github.com/Exiv2/exiv2/commit/bd0afe0390439b2c424d881c8c6eb0c5624e31d9
NOTE: https://github.com/Exiv2/exiv2/pull/946 (complementary fix)
@@ -255172,7 +255165,7 @@ CVE-2019-13112 (A PngChunk::parseChunkContent uncontrolled memory allocation in
[buster] - exiv2 <ignored> (Minor issue)
[stretch] - exiv2 <ignored> (Minor issue)
[jessie] - exiv2 <ignored> (Minor issue, clean exception / local DoS)
- NOTE: https://github.com/Exiv2/exiv2/commit/1ed1e03c83802547585833fa9d4433af94798778
+ NOTE: https://github.com/Exiv2/exiv2/commit/d3e69f6d2c60bd06bf1c0564b919989ecfc89ec1
NOTE: https://github.com/Exiv2/exiv2/issues/845
CVE-2019-13111 (A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 all ...)
- exiv2 <not-affected> (Only affected 0.27, vulnerable versions were only in experimental)
@@ -255188,15 +255181,13 @@ CVE-2019-13110 (A CiffDirectory::readDirectory integer overflow and out-of-bound
NOTE: https://github.com/Exiv2/exiv2/commit/9628f82084ed30d494ddd4f7360d233801e22967
CVE-2019-13109 (An integer overflow in Exiv2 through 0.27.1 allows an attacker to caus ...)
- exiv2 0.27.2-6 (low)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <ignored> (Minor issue)
+ [buster] - exiv2 <not-affected> (ICC-specific support added in 0.26)
[jessie] - exiv2 <not-affected> (ICC-specific support added in 0.26, PoC doesn't crash)
NOTE: https://github.com/Exiv2/exiv2/commit/491c3ebe3b3faa6d8f75fb28146186792c2439da
NOTE: https://github.com/Exiv2/exiv2/issues/790
CVE-2019-13108 (An integer overflow in Exiv2 through 0.27.1 allows an attacker to caus ...)
- exiv2 0.27.2-6 (low)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <ignored> (Minor issue)
+ [buster] - exiv2 <not-affected> (ICC-specific support added in 0.26)
[jessie] - exiv2 <not-affected> (ICC-specific support added in 0.26, PoC doesn't crash)
NOTE: https://github.com/Exiv2/exiv2/commit/5d1d6981229b5e44401bf5c503100553fc7d877a
NOTE: https://github.com/Exiv2/exiv2/issues/789
@@ -258007,7 +257998,6 @@ CVE-2019-12099 (In PHP-Fusion 9.03.00, edit_profile.php allows remote authentica
CVE-2019-12098 (In the client side of Heimdal before 7.6.0, failure to verify anonymou ...)
{DSA-4455-1}
- heimdal 7.5.0+dfsg-3 (bug #929064)
- [jessie] - heimdal <no-dsa> (Minor issue)
NOTE: Fixed by: https://github.com/heimdal/heimdal/commit/2f7f3d9960aa6ea21358bdf3687cee5149aa35cf (7.6.0)
NOTE: Introduced by: https://github.com/heimdal/heimdal/commit/a1ef548600c5bb51cf52a9a9ea12676506ede19f (1.4.0)
CVE-2019-12097 (Telerik Fiddler v5.0.20182.28034 doesn't verify the hash of EnableLoop ...)
@@ -285969,7 +285959,8 @@ CVE-2018-20097 (There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimar
[buster] - exiv2 <ignored> (Minor issue)
[stretch] - exiv2 <ignored> (Minor issue)
NOTE: https://github.com/Exiv2/exiv2/issues/590
- NOTE: https://github.com/Exiv2/exiv2/commit/203ab0db28c9666b16069d4056ac5f66f753a51d
+ NOTE: proposed: https://github.com/Exiv2/exiv2/commit/203ab0db28c9666b16069d4056ac5f66f753a51d
+ NOTE: included: https://github.com/Exiv2/exiv2/commit/9296067b95b39bc055112b91d2f4031b7b542aec
CVE-2018-20096 (There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf fun ...)
[experimental] - exiv2 <unfixed> (low)
- exiv2 <not-affected> (Vulnerable code introduced later)
@@ -320325,9 +320316,7 @@ CVE-2018-9145 (In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an
NOTE: Issue introduced after https://github.com/Exiv2/exiv2/commit/163f3ce7f17a143f58d857a5cba3cb7b24436a2a
CVE-2018-9144 (In Exiv2 0.26, there is an out-of-bounds read in Exiv2::Internal::bina ...)
- exiv2 0.27.2-6 (low)
- [buster] - exiv2 <ignored> (Minor issue)
- [stretch] - exiv2 <ignored> (Minor issue)
- [jessie] - exiv2 <ignored> (Minor issue)
+ [buster] - exiv2 <not-affected> (printing IPTC structures added in 0.26)
[wheezy] - exiv2 <not-affected> (Vulnerable code not present)
NOTE: https://github.com/Exiv2/exiv2/issues/254
NOTE: https://github.com/xiaoqx/pocs/tree/master/exiv2
@@ -320745,7 +320734,6 @@ CVE-2018-8976 (In Exiv2 0.26, jpgimage.cpp allows remote attackers to cause a de
- exiv2 0.27.2-6 (low; bug #903813)
[buster] - exiv2 <ignored> (Minor issue)
[stretch] - exiv2 <ignored> (Minor issue)
- [jessie] - exiv2 <ignored> (Minor issue)
[wheezy] - exiv2 <not-affected> (Vulnerable code not present)
NOTE: https://github.com/Exiv2/exiv2/issues/246
NOTE: https://github.com/Exiv2/exiv2/pull/256
@@ -379481,7 +379469,6 @@ CVE-2017-6595
RESERVED
CVE-2017-6594 (The transit path validation code in Heimdal before 7.3 might allow att ...)
- heimdal 7.1.0+dfsg-12
- [jessie] - heimdal <no-dsa> (Minor issue)
[wheezy] - heimdal <no-dsa> (Minor issue)
NOTE: https://github.com/heimdal/heimdal/commit/b1e699103f08d6a0ca46a122193c9da65f6cf837
NOTE: See https://lists.debian.org/debian-lts/2017/05/msg00010.html
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/16e13cfcad9b3bed80b5d2e5bdc4c640a4fc21e2...b632e32db7e005324b9127d1887dd7b81f216039
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/16e13cfcad9b3bed80b5d2e5bdc4c640a4fc21e2...b632e32db7e005324b9127d1887dd7b81f216039
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230110/0c04e166/attachment.htm>
More information about the debian-security-tracker-commits
mailing list