[Git][security-tracker-team/security-tracker][master] Update status for CVE-2023-3618/tiff
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jul 18 21:47:06 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5cc3e1dd by Salvatore Bonaccorso at 2023-07-18T22:45:39+02:00
Update status for CVE-2023-3618/tiff
Thanks: László Böszörményi
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -921,10 +921,11 @@ CVE-2023-37943 (Jenkins Active Directory Plugin 2.30 and earlier ignores the "Re
CVE-2023-37942 (Jenkins External Monitor Job Type Plugin 206.v9a_94ff0b_4a_10 and earl ...)
NOT-FOR-US: Jenkins plugin
CVE-2023-3618 (A flaw was found in libtiff. A specially crafted tiff file can lead to ...)
- - tiff <unfixed> (bug #1040945)
+ - tiff 4.5.1~rc3-1 (bug #1040945)
[bookworm] - tiff <no-dsa> (Minor issue)
[bullseye] - tiff <no-dsa> (Minor issue)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/529
+ NOTE: https://gitlab.com/libtiff/libtiff/-/commit/b5c7d4c4e03333ac16b5cfb11acaaeaa493334f8 (v4.5.1rc1)
CVE-2023-3603
- libssh <not-affected> (Vulnerable code not present in 0.10.5/any released version)
NOTE: https://git.libssh.org/projects/libssh.git/commit/?id=fe80f47b0ae8902d229ef9b8a1b4fa949b92e720
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5cc3e1dd854d91503f2da9818a2f2ca21c33eb69
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5cc3e1dd854d91503f2da9818a2f2ca21c33eb69
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230718/2bd05f23/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list