[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2024-24792/golang-golang-x-image
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Aug 10 12:32:32 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
401f08a5 by Salvatore Bonaccorso at 2024-08-10T13:31:48+02:00
Track fixed version for CVE-2024-24792/golang-golang-x-image
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10099,7 +10099,7 @@ CVE-2024-28820 (Buffer overflow in the extract_openvpn_cr function in openvpn-cr
[bullseye] - openvpn-auth-ldap <no-dsa> (Minor issue)
NOTE: https://github.com/threerings/openvpn-auth-ldap/pull/92
CVE-2024-24792 (Parsing a corrupt or malicious image with invalid color indices can ca ...)
- - golang-golang-x-image <unfixed> (bug #1074426)
+ - golang-golang-x-image 0.18.0-1 (bug #1074426)
[bookworm] - golang-golang-x-image <no-dsa> (Minor issue)
[bullseye] - golang-golang-x-image <no-dsa> (Minor issue)
NOTE: https://github.com/advisories/GHSA-9phm-fm57-rhg8
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/401f08a59182396622c5925a5b237df57340e9ec
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/401f08a59182396622c5925a5b237df57340e9ec
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240810/f2fd9e68/attachment.htm>
More information about the debian-security-tracker-commits
mailing list