[Git][security-tracker-team/security-tracker][master] Add freeimage upstream bugs for CVE-2023-47995
Santiago R.R. (@santiago)
santiago at debian.org
Thu Oct 3 18:44:50 BST 2024
Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5ad46490 by Santiago Ruano Rincón at 2024-10-03T14:44:26-03:00
Add freeimage upstream bugs for CVE-2023-47995
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -72505,6 +72505,7 @@ CVE-2023-47995 (Memory Allocation with Excessive Size Value discovered in Bitmap
[bullseye] - freeimage <postponed> (Revisit when fixed upstream)
NOTE: https://github.com/thelastede/FreeImage-cve-poc/tree/master/CVE-2023-47995
NOTE: Patch in Fedora (not upstream'ed): https://src.fedoraproject.org/rpms/freeimage/blob/f39/f/CVE-2023-47995.patch
+ NOTE: https://sourceforge.net/p/freeimage/bugs/360/
CVE-2023-47994 (An integer overflow vulnerability in LoadPixelDataRLE4 function in Plu ...)
- freeimage <unfixed> (bug #1060691)
[bookworm] - freeimage <postponed> (Revisit when fixed upstream)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ad464908d925641affbfeb711f2eaa5d0fcf453
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ad464908d925641affbfeb711f2eaa5d0fcf453
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241003/0398397a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list