[Git][security-tracker-team/security-tracker][master] Add two new dcmtk issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jan 14 05:47:12 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1acc2f9d by Salvatore Bonaccorso at 2025-01-14T06:45:27+01:00
Add two new dcmtk issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -67,7 +67,9 @@ CVE-2024-52936 (Kernel software installed and running inside a Guest VM may post
 CVE-2024-52935 (Kernel software installed and running inside a Guest VM may exploit me ...)
 	NOT-FOR-US: Imagination GPU Driver
 CVE-2024-52333 (An improper array index validation vulnerability exists in the determi ...)
-	TODO: check
+	- dcmtk <unfixed>
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-2121
+	NOTE: Fixed by: https://git.dcmtk.org/?p=dcmtk.git;a=commit;h=03e851b0586d05057c3268988e180ffb426b2e03
 CVE-2024-51728
 	REJECTED
 CVE-2024-48883 (An issue was discovered in Samsung Mobile Processor, Wearable Processo ...)
@@ -79,7 +81,9 @@ CVE-2024-47895 (Kernel software installed and running inside a Guest VM may post
 CVE-2024-47894 (Kernel software installed and running inside a Guest VM may post impro ...)
 	NOT-FOR-US: Imagination GPU Driver
 CVE-2024-47796 (An improper array index validation vulnerability exists in the nowindo ...)
-	TODO: check
+	- dcmtk <unfixed>
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-2122
+	NOTE: Fixed by: https://git.dcmtk.org/?p=dcmtk.git;a=commit;h=89a6e399f1e17d08a8bc8cdaa05b2ac9a50cd4f6
 CVE-2024-46921 (An issue was discovered in Samsung Mobile Processor and Modem Exynos 9 ...)
 	NOT-FOR-US: Samsung
 CVE-2024-46920 (An issue was discovered in Samsung Mobile Processor Exynos 9820, 9825, ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1acc2f9ddf8c61130fb386b68d0bc7dae120581f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1acc2f9ddf8c61130fb386b68d0bc7dae120581f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250114/df99ba0b/attachment.htm>

More information about the debian-security-tracker-commits mailing list