[Git][security-tracker-team/security-tracker][master] update assimp references

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Oct 25 14:04:33 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d3516e0c by Moritz Muehlenhoff at 2024-10-25T15:03:51+02:00
update assimp references

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -122,16 +122,18 @@ CVE-2024-10011 (The BuddyPress plugin for WordPress is vulnerable to Directory T
 	NOT-FOR-US: WordPress plugin
 CVE-2024-48426 (A segmentation fault (SEGV) was detected in the SortByPTypeProcess::Ex ...)
 	- assimp <unfixed>
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2321614
+	NOTE: https://github.com/assimp/assimp/issues/5789
 CVE-2024-48425 (A segmentation fault (SEGV) was detected in the Assimp::SplitLargeMesh ...)
 	- assimp <unfixed>
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2321631
+	NOTE: https://github.com/assimp/assimp/issues/5791
+	NOTE: https://github.com/assimp/assimp/commit/ecdf8d24b85367b22ba353b4f82299d4af7f1f97
+	NOTE: https://github.com/assimp/assimp/pull/5799
 CVE-2024-48424 (A heap-buffer-overflow vulnerability has been identified in the OpenDD ...)
 	- assimp <unfixed>
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2321628
+	NOTE: https://github.com/assimp/assimp/issues/5787
 CVE-2024-48423 (An issue in assimp v.5.4.3 allows a local attacker to execute arbitrar ...)
 	- assimp <unfixed>
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2321643
+	NOTE: https://github.com/assimp/assimp/issues/5788
 CVE-2024-9692 (VIMESA VHF/FM Transmitter Blue Plus is suffering from a Denial-of-Serv ...)
 	NOT-FOR-US: VIMESA VHF/FM Transmitter Blue Plus
 CVE-2024-9650 (The WP Recipe Maker plugin for WordPress is vulnerable to Stored Cross ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d3516e0c757d8a11d01bf82967efe724b2bf3a4e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d3516e0c757d8a11d01bf82967efe724b2bf3a4e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241025/f4a897d7/attachment.htm>

More information about the debian-security-tracker-commits mailing list