[Git][security-tracker-team/security-tracker][master] Reference pull request for CVE-2024-39133
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Aug 21 19:34:43 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d2cbe548 by Salvatore Bonaccorso at 2025-08-21T20:34:15+02:00
Reference pull request for CVE-2024-39133
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -123417,6 +123417,7 @@ CVE-2024-39133 (Heap Buffer Overflow vulnerability in zziplib v0.13.77 allows at
[bullseye] - zziplib <no-dsa> (Minor issue)
[buster] - zziplib <postponed> (Minor issue, revisi when fixed upstream)
NOTE: https://github.com/gdraheim/zziplib/issues/164
+ NOTE: https://github.com/gdraheim/zziplib/pull/169
NOTE: No exact fixing commits known, but upstream concludes as fixed in v0.13.78
CVE-2024-39130 (A NULL Pointer Dereference discovered in DumpTS v0.1.0-nightly allows ...)
NOT-FOR-US: DumpTS
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2cbe5486b0dc701eee55cbd3e51575b92066d69
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2cbe5486b0dc701eee55cbd3e51575b92066d69
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250821/d6469c16/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list