[Git][security-tracker-team/security-tracker][master] new openimageio issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Jul 3 21:29:41 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b04c8c57 by Moritz Muehlenhoff at 2023-07-03T22:29:10+02:00
new openimageio issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -42,7 +42,11 @@ CVE-2023-36223 (Cross Site Scripting vulnerability in mlogclub bbs-go v. 3.5.5.
CVE-2023-36222 (Cross Site Scripting vulnerability in mlogclub bbs-go v. 3.5.5. and be ...)
NOT-FOR-US: mlogclub bbs-go
CVE-2023-36183 (Buffer Overflow vulnerability in OpenImageIO v.2.4.12.0 and before all ...)
- TODO: check
+ - openimageio <unfixed>
+ [bookworm] - openimageio <no-dsa> (Minor issue)
+ [bullseye] - openimageio <no-dsa> (Minor issue)
+ NOTE: https://github.com/OpenImageIO/oiio/issues/3871
+ NOTE: https://github.com/OpenImageIO/oiio/commit/aad99bad9a4f6b965f99a291f9c67458c8c982e8
CVE-2023-36162 (Cross Site Request Forgery vulnerability in ZZCMS v.2023 alows a remot ...)
NOT-FOR-US: ZZCMS
CVE-2023-35935 (@fastify/oauth2, a wrapper around the `simple-oauth2` library, is vuln ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b04c8c57919454408026d2c183a0f95ed2c35315
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b04c8c57919454408026d2c183a0f95ed2c35315
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230703/29e2ea8b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list