[Git][security-tracker-team/security-tracker][master] Remove note to temporary work in progress patch for CVE
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Sep 29 15:54:50 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
819b03ea by Salvatore Bonaccorso at 2024-09-29T16:53:43+02:00
Remove note to temporary work in progress patch for CVE
Temporarily move it the package note, so it might disapear once the
postponed actions is taken on and update included.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20110,13 +20110,12 @@ CVE-2024-29509 (Artifex Ghostscript before 10.03.0 has a heap-based overflow whe
CVE-2024-29508 (Artifex Ghostscript before 10.03.0 has a heap-based pointer disclosure ...)
{DSA-5760-1}
- ghostscript 10.03.0~dfsg-1
- [bullseye] - ghostscript <postponed> (Minor issue; can be fixed in next update)
+ [bullseye] - ghostscript <postponed> (Minor issue; can be fixed in next update; http://people.debian.org/~abhijith/CVE-2024-29508.patch)
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=707510
NOTE: https://www.openwall.com/lists/oss-security/2024/07/03/7
NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=ff1013a0ab485b66783b70145e342a82c670906a (ghostpdl-10.03.0)
NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=147e5abd63d82c9ec3587c6f67a5d8ec7dc38e61 (ghostpdl-10.03.0)
NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=d084021e06ba1caa1373fbbcf24a8510f43830ab (ghostpdl-10.03.0)
- NOTE: http://people.debian.org/~abhijith/CVE-2024-29508.patch (bullseye patch)
CVE-2024-29507 (Artifex Ghostscript before 10.03.0 sometimes has a stack-based buffer ...)
{DSA-5760-1}
- ghostscript 10.03.0~dfsg-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/819b03ea570e8b78ad1155813a7efcb29d2945c7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/819b03ea570e8b78ad1155813a7efcb29d2945c7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240929/b3c1cc4b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list