[Git][security-tracker-team/security-tracker][master] Update information on CVE-2023-46009/gifsicle

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7927e1b7 by Salvatore Bonaccorso at 2023-10-19T18:14:56+02:00
Update information on CVE-2023-46009/gifsicle

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -71,8 +71,11 @@ CVE-2023-5631 (Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6
 CVE-2023-4601 (A stack-based buffer overflow vulnerability exists in NI System Config ...)
 	TODO: check
 CVE-2023-46009 (gifsicle-1.94 was found to have a floating point exception (FPE) vulne ...)
-	- gifsicle <unfixed>
+	- gifsicle <unfixed> (unimportant)
 	NOTE: https://github.com/kohler/gifsicle/issues/196
+	NOTE: Fixed by: https://github.com/kohler/gifsicle/commit/76b1f021dd185ceff7b4a71a9f96a6026aca06af
+	NOTE: Fixed by: https://github.com/kohler/gifsicle/commit/06d533628b1f3a75d06cbb29773dc6aaa2916fc3
+	NOTE: Crash in CLI tool, no security impact
 CVE-2023-46007 (Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL ...)
 	NOT-FOR-US: Sourcecodester Best Courier Management System
 CVE-2023-46006 (Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7927e1b70f90ffa15295e9ee620f1596da83d7fa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7927e1b70f90ffa15295e9ee620f1596da83d7fa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231019/17724408/attachment.htm>