[Git][security-tracker-team/security-tracker][master] faad2 n/a

Wed Jan 1 21:57:18 GMT 2025


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dc240413 by Moritz Muehlenhoff at 2025-01-01T22:56:58+01:00
faad2 n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -123044,12 +123044,10 @@ CVE-2023-38858 (Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote a
 	NOTE: https://github.com/knik0/faad2/issues/173
 	NOTE: Fixed by: https://github.com/knik0/faad2/commit/c65ae2904192965e7c9fcafe8c1ae5fa0649eea4 (2.11.0)
 CVE-2023-38857 (Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacke ...)
-	- faad2 2.11.0-1 (bug #1050094)
-	[bookworm] - faad2 <no-dsa> (Minor issue)
-	[bullseye] - faad2 <no-dsa> (Minor issue)
-	[buster] - faad2 <postponed> (recheck when fixed upstream)
+	- faad2 <not-affected> (Vulnerable version was never in the archive, bug #1050094)
 	NOTE: https://github.com/knik0/faad2/issues/171
 	NOTE: Fixed by: https://github.com/knik0/faad2/commit/b02a9ee5bf071fa92563536c076a69dbec814e7e (2.11.0)
+	NOTE: Introduced in https://github.com/knik0/faad2/commit/c8f36e7d779d6ac34a902873975163c1c7793382 (2.11.0)
 CVE-2023-38856 (Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ...)
 	- r-cran-readxl <unfixed> (unimportant)
 	NOTE: https://github.com/libxls/libxls/issues/124 (#4)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc240413a8ae34a2f3744d6ed9815e94b393dfc4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc240413a8ae34a2f3744d6ed9815e94b393dfc4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250101/27998018/attachment-0001.htm>
