[Git][security-tracker-team/security-tracker][master] Add reference for CVE-2024-39134/zziplib
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Feb 26 04:53:22 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5102355a by Salvatore Bonaccorso at 2025-02-26T05:52:43+01:00
Add reference for CVE-2024-39134/zziplib
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -63886,6 +63886,7 @@ CVE-2024-39134 (A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows
[bullseye] - zziplib <no-dsa> (Minor issue)
[buster] - zziplib <postponed> (Minor issue, revisi when fixed upstream)
NOTE: https://github.com/gdraheim/zziplib/issues/165
+ NOTE: Fixed by: https://github.com/gdraheim/zziplib/commit/2a84ae73e93b0c1f4f12f2c58104f8327d10e41b (v0.13.78)
CVE-2024-39132 (A NULL Pointer Dereference vulnerability in DumpTS v0.1.0-nightly allo ...)
NOT-FOR-US: DumpTS
CVE-2024-37282 (It was identified that under certain specific preconditions, an API ke ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5102355ac1f498bac170c684bc36399ee5413b49
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5102355ac1f498bac170c684bc36399ee5413b49
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250226/e8a6eeff/attachment.htm>
More information about the debian-security-tracker-commits
mailing list