[Git][security-tracker-team/security-tracker][master] CVE-2022-1354/tiff: reference introductory commit
Sylvain Beucler (@beuc)
beuc at debian.org
Thu Sep 28 11:49:01 BST 2023
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e04ba347 by Sylvain Beucler at 2023-09-28T12:46:21+02:00
CVE-2022-1354/tiff: reference introductory commit
(using git-bisect and poc.zip from https://gitlab.com/libtiff/libtiff/-/issues/319)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -104053,6 +104053,7 @@ CVE-2022-1354 (A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in
- tiff 4.3.0-7
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/319
NOTE: Fixed by: https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798
+ NOTE: Introduced by: https://gitlab.com/libtiff/libtiff/-/commit/7057734d986001b7fd6d2afde9667da7754ff2cc (v4.0.9)
CVE-2022-1353 (A vulnerability was found in the pfkey_register function in net/key/af ...)
{DSA-5173-1 DSA-5127-1 DLA-3065-1}
- linux 5.17.3-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e04ba347a1432e344e42c32adb093c65362d22d6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e04ba347a1432e344e42c32adb093c65362d22d6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230928/9a7d4cf3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list