[Git][security-tracker-team/security-tracker][master] Track fixes for three CVEs for openjpeg2 via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jan 31 19:38:06 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
965c42e2 by Salvatore Bonaccorso at 2025-01-31T20:37:32+01:00
Track fixes for three CVEs for openjpeg2 via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9537,14 +9537,14 @@ CVE-2024-8447 (A security issue was discovered in the LRA Coordinator component
 CVE-2024-56827 (A flaw was found in the OpenJPEG project. A heap buffer overflow condi ...)
 	{DSA-5851-1}
 	[experimental] - openjpeg2 2.5.3-1~exp1
-	- openjpeg2 <unfixed> (bug #1092676)
+	- openjpeg2 2.5.3-1 (bug #1092676)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2335174
 	NOTE: https://github.com/uclouvain/openjpeg/issues/1564
 	NOTE: https://github.com/uclouvain/openjpeg/commit/e492644fbded4c820ca55b5e50e598d346e850e8 (v2.5.3)
 CVE-2024-56826 (A flaw was found in the OpenJPEG project. A heap buffer overflow condi ...)
 	{DSA-5851-1}
 	[experimental] - openjpeg2 2.5.3-1~exp1
-	- openjpeg2 <unfixed> (bug #1092675)
+	- openjpeg2 2.5.3-1 (bug #1092675)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2335172
 	NOTE: https://github.com/uclouvain/openjpeg/issues/1563
 	NOTE: https://github.com/uclouvain/openjpeg/commit/98592ee6d6904f1b48e8207238779b89a63befa2 (v2.5.3)
@@ -291548,7 +291548,7 @@ CVE-2021-3576 (Execution with Unnecessary Privileges vulnerability in Bitdefende
 CVE-2021-3575 (A heap-based buffer overflow was found in openjpeg in color.c:379:42 i ...)
 	{DSA-5851-1}
 	[experimental] - openjpeg2 2.5.3-1~exp1
-	- openjpeg2 <unfixed> (bug #989775)
+	- openjpeg2 2.5.3-1 (bug #989775)
 	[bullseye] - openjpeg2 <no-dsa> (Minor issue)
 	[buster] - openjpeg2 <no-dsa> (Minor issue)
 	[stretch] - openjpeg2 <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/965c42e2947b66a3acb72221bfdd24ed751d742f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/965c42e2947b66a3acb72221bfdd24ed751d742f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250131/4fb83364/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list