[Git][security-tracker-team/security-tracker][master] Add new libxpm issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jan 17 17:07:55 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5031f085 by Salvatore Bonaccorso at 2023-01-17T18:07:17+01:00
Add new libxpm issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2403,6 +2403,10 @@ CVE-2022-4884 (Path-Traversal in MKP storing in Tribe29 Checkmk <=2.0.0p32 an
 	- check-mk <removed>
 CVE-2022-4883
 	RESERVED
+	- libxpm <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2023/01/17/2
+	NOTE: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/515294bb8023a45ff916696d0a14308ff4f3a376 (libXpm-3.5.15)
+	NOTE: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/8178eb0834d82242e1edbc7d4fb0d1b397569c68 (libXpm-3.5.15)
 CVE-2022-4882 (A vulnerability was found in kaltura mwEmbed up to 2.91. It has been r ...)
 	NOT-FOR-US: Kaltura
 CVE-2022-48250
@@ -2449,8 +2453,15 @@ CVE-2022-48230
 	RESERVED
 CVE-2022-46285
 	RESERVED
+	- libxpm <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2023/01/17/2
+	NOTE: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/a3a7c6dcc3b629d765014816c566c63165c63ca8 (libXpm-3.5.15)
 CVE-2022-44617
 	RESERVED
+	- libxpm <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2023/01/17/2
+	NOTE: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/f80fa6ae47ad4a5beacb287c0030c9913b046643 (libXpm-3.5.15)
+	NOTE: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/c5ab17bcc34914c0b0707d2135dbebe9a367c5f0 (libXpm-3.5.15)
 CVE-2021-4311 (A vulnerability classified as problematic was found in Talend Open Stu ...)
 	NOT-FOR-US: Talend
 CVE-2021-4310 (A vulnerability was found in 01-Scripts 01-Artikelsystem. It has been  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5031f085d0d0b4fdfbf4b74e3a6cb609688d4bb7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5031f085d0d0b4fdfbf4b74e3a6cb609688d4bb7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230117/63f4d147/attachment.htm>

More information about the debian-security-tracker-commits mailing list