[Git][security-tracker-team/security-tracker][master] Add CVE-2023-42299/openimageio
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Nov 3 09:13:51 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
024fdd83 by Salvatore Bonaccorso at 2023-11-03T10:13:24+01:00
Add CVE-2023-42299/openimageio
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25,7 +25,10 @@ CVE-2023-43194 (Submitty before v22.06.00 is vulnerable to Incorrect Access Cont
CVE-2023-43018 (IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operatio ...)
NOT-FOR-US: IBM
CVE-2023-42299 (Buffer Overflow vulnerability in OpenImageIO oiio v.2.4.12.0 allows a ...)
- TODO: check
+ - openimageio 2.4.13.0+dfsg-1
+ NOTE: https://github.com/OpenImageIO/oiio/issues/3840
+ NOTE: https://github.com/AcademySoftwareFoundation/OpenImageIO/pull/3841
+ NOTE: https://github.com/AcademySoftwareFoundation/OpenImageIO/commit/5ff2c56dd28e96f67ed8f80d8a3d1235e51f9957 (v2.4.12.0)
CVE-2023-42029 (IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multi ...)
TODO: check
CVE-2023-42027 (IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/024fdd834b6ccb681a667976bc23391f80ab9a40
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/024fdd834b6ccb681a667976bc23391f80ab9a40
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231103/59ca1df7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list