[Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-1056/tiff
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jun 14 06:50:54 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bc7d620a by Salvatore Bonaccorso at 2023-06-14T07:50:25+02:00
Update information for CVE-2022-1056/tiff
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -93651,10 +93651,10 @@ CVE-2022-26420 (An OS command injection vulnerability exists in the console infa
CVE-2022-26075 (An OS command injection vulnerability exists in the console infactory_ ...)
NOT-FOR-US: InHand Networks InRouter302
CVE-2022-1056 (Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers ...)
- - tiff <unfixed> (unimportant)
+ - tiff 4.4.0~rc1-1 (unimportant)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/391
NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/307
- NOTE: https://gitlab.com/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c
+ NOTE: https://gitlab.com/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c (v4.4.0rc1)
NOTE: Crash in CLI tool, no security impact
CVE-2022-28352 (WeeChat (aka Wee Enhanced Environment for Chat) 3.2 to 3.4 before 3.4. ...)
- weechat 3.4.1-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc7d620a51c61abdae9ec1878804241d75c902d0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc7d620a51c61abdae9ec1878804241d75c902d0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230614/b26d5ef3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list