[Git][security-tracker-team/security-tracker][master] Mark CVE-2023-45853 as no-dsa
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Nov 24 19:40:57 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4766305d by Salvatore Bonaccorso at 2023-11-24T20:39:44+01:00
Mark CVE-2023-45853 as no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6804,6 +6804,8 @@ CVE-2023-45853 (MiniZip in zlib through 1.3 has an integer overflow and resultan
[bullseye] - zlib <ignored> (contrib/minizip not built and producing binary packages)
[buster] - zlib <ignored> (contrib/minizip not built and producing binary packages)
- minizip <removed>
+ [bookworm] - minizip <no-dsa> (Minor issue; can be fixed in point release)
+ [bullseye] - minizip <no-dsa> (Minor issue; can be fixed in point release)
NOTE: https://github.com/madler/zlib/pull/843
NOTE: https://github.com/madler/zlib/commit/73331a6a0481067628f065ffe87bb1d8f787d10c
NOTE: src:zlib only starts building minizip starting in 1:1.2.13.dfsg-2
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4766305db043ef0ac4a288f413f7bd8b5d8aecc7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4766305db043ef0ac4a288f413f7bd8b5d8aecc7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231124/e63c9ad4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list