[Git][security-tracker-team/security-tracker][master] new asn1c non issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Jul 23 20:14:21 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
90333eeb by Moritz Muehlenhoff at 2023-07-23T21:13:53+02:00
new asn1c non issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -210919,9 +210919,13 @@ CVE-2020-23913
CVE-2020-23912 (An issue was discovered in Bento4 through v1.6.0-637. A NULL pointer d ...)
NOT-FOR-US: Bento4
CVE-2020-23911 (An issue was discovered in asn1c through v0.9.28. A NULL pointer deref ...)
- TODO: check
+ - asn1c <unfixed> (unimportant)
+ NOTE: Crash in CLI tool, no security impact
+ NOTE: https://github.com/vlm/asn1c/issues/394
CVE-2020-23910 (Stack-based buffer overflow vulnerability in asn1c through v0.9.28 via ...)
- TODO: check
+ - asn1c <unfixed> (unimportant)
+ NOTE: Crash in CLI tool, no security impact
+ NOTE: https://github.com/vlm/asn1c/issues/396
CVE-2020-23909 (Heap-based buffer over-read in function png_convert_4 in file pngex.cc ...)
TODO: check
CVE-2020-23908
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90333eeb6bda030f4b8c00a4566458631f222c1c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90333eeb6bda030f4b8c00a4566458631f222c1c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230723/a3cea039/attachment.htm>
More information about the debian-security-tracker-commits
mailing list