[Git][security-tracker-team/security-tracker][master] faad2 n/a
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Jan 1 22:21:04 GMT 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9c9d1f79 by Moritz Muehlenhoff at 2025-01-01T23:20:42+01:00
faad2 n/a
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -123037,14 +123037,12 @@ CVE-2023-38861 (An issue in Wavlink WL_WNJ575A3 v.R75A3_V1410_220513 allows a re
CVE-2023-38860 (An issue in LangChain v.0.0.231 allows a remote attacker to execute ar ...)
NOT-FOR-US: LangChain
CVE-2023-38858 (Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacke ...)
- - faad2 2.11.0-1 (bug #1050095)
- [bookworm] - faad2 <no-dsa> (Minor issue)
- [bullseye] - faad2 <no-dsa> (Minor issue)
- [buster] - faad2 <postponed> (recheck when fixed upstream)
+ - faad2 <not-affected> (Vulnerable code was never in the archive, bug #1050095)
NOTE: https://github.com/knik0/faad2/issues/173
NOTE: Fixed by: https://github.com/knik0/faad2/commit/c65ae2904192965e7c9fcafe8c1ae5fa0649eea4 (2.11.0)
+ NOTE: Introduced in https://github.com/knik0/faad2/commit/c8f36e7d779d6ac34a902873975163c1c7793382 (2.11.0)
CVE-2023-38857 (Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacke ...)
- - faad2 <not-affected> (Vulnerable version was never in the archive, bug #1050094)
+ - faad2 <not-affected> (Vulnerable code was never in the archive, bug #1050094)
NOTE: https://github.com/knik0/faad2/issues/171
NOTE: Fixed by: https://github.com/knik0/faad2/commit/b02a9ee5bf071fa92563536c076a69dbec814e7e (2.11.0)
NOTE: Introduced in https://github.com/knik0/faad2/commit/c8f36e7d779d6ac34a902873975163c1c7793382 (2.11.0)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c9d1f791cc2aa585fe10995bafe01157ab4da60
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c9d1f791cc2aa585fe10995bafe01157ab4da60
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250101/ca62f800/attachment.htm>
More information about the debian-security-tracker-commits
mailing list