[Git][security-tracker-team/security-tracker][master] Update status for CVE-2023-3316/tiff
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jun 3 21:15:48 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c2bfd8e9 by Salvatore Bonaccorso at 2024-06-03T22:15:09+02:00
Update status for CVE-2023-3316/tiff
This indeed was fixed already earlier in unstable with the 4.5.0-5
upload including
* Backport fix for TIFFClose() avoid NULL pointer dereferencing.
in TIFFClose_avoid_NULL_pointer_dereferencing.patch.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -75216,8 +75216,7 @@ CVE-2023-3317 (A use-after-free flaw was found in mt7921_check_offload_capabilit
NOTE: https://git.kernel.org/linus/2ceb76f734e37833824b7fab6af17c999eb48d2b (6.3-rc6)
CVE-2023-3316 (A NULL pointer dereference in TIFFClose() is caused by a failure to op ...)
{DLA-3513-1}
- - tiff 4.5.1~rc3-1
- [bookworm] - tiff <no-dsa> (Minor issue)
+ - tiff 4.5.0-5
[bullseye] - tiff <no-dsa> (Minor issue)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/515
NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/468
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2bfd8e91e43742d07a0cf074f73828aa29a0041
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2bfd8e91e43742d07a0cf074f73828aa29a0041
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240603/32f7279c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list