[Git][security-tracker-team/security-tracker][master] Add note on partial mitigation for CVE-2023-39327/openjpeg2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Feb 1 06:43:33 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b30625c8 by Salvatore Bonaccorso at 2025-02-01T07:43:01+01:00
Add note on partial mitigation for CVE-2023-39327/openjpeg2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -56471,6 +56471,8 @@ CVE-2023-39327 (A flaw was found in OpenJPEG. Maliciously constructed pictures c
- openjpeg2 <unfixed> (bug #1081908)
[bullseye] - openjpeg2 <no-dsa> (Minor issue)
NOTE: https://github.com/uclouvain/openjpeg/issues/1472
+ NOTE: Partial mitigation of CVE-2023-39327 (in absence of EPH):
+ NOTE: https://github.com/uclouvain/openjpeg/commit/822562d689f491ae5d012627ba00ac235d399b9e (v2.5.3)
CVE-2024-6526 (A vulnerability classified as problematic has been found in CodeIgnite ...)
NOT-FOR-US: Ecommerce-CodeIgniter-Bootstrap
CVE-2024-6525 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DA ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b30625c8d0c6cf11376e21469b37c5406dee7505
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b30625c8d0c6cf11376e21469b37c5406dee7505
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250201/ec27a1d9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list