[Git][security-tracker-team/security-tracker][master] Reserve DLA-4257-1 for libcaca
Thorsten Alteholz (@alteholz)
alteholz at debian.org
Mon Jul 28 10:15:26 BST 2025
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
da26baeb by Thorsten Alteholz at 2025-07-28T11:15:07+02:00
Reserve DLA-4257-1 for libcaca
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -358839,14 +358839,12 @@ CVE-2021-30500 (Null pointer dereference was found in upx PackLinuxElf::canUnpac
CVE-2021-30499 (A flaw was found in libcaca. A buffer overflow of export.c in function ...)
{DLA-3784-1}
- libcaca 0.99.beta19-3 (bug #987278)
- [bullseye] - libcaca <no-dsa> (Minor issue)
[stretch] - libcaca <postponed> (Minor issue; can be fixed in next update)
NOTE: https://github.com/cacalabs/libcaca/issues/54
NOTE: Fixed by: https://github.com/cacalabs/libcaca/commit/ab04483ee1a846d6b74b2e6248e980152baec3f6 (v0.99.beta20)
CVE-2021-30498 (A flaw was found in libcaca. A heap buffer overflow in export.c in fun ...)
{DLA-3784-1}
- libcaca 0.99.beta19-3 (bug #987278)
- [bullseye] - libcaca <no-dsa> (Minor issue)
[stretch] - libcaca <postponed> (Minor issue; can be fixed in next update)
NOTE: https://github.com/cacalabs/libcaca/issues/53
NOTE: Fixed by: https://github.com/cacalabs/libcaca/commit/ab04483ee1a846d6b74b2e6248e980152baec3f6 (v0.99.beta20)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[28 Jul 2025] DLA-4257-1 libcaca - security update
+ {CVE-2021-30498 CVE-2021-30499}
+ [bullseye] - libcaca 0.99.beta19-2.2+deb11u1
[28 Jul 2025] DLA-4256-1 libetpan - security update
{CVE-2022-4121}
[bullseye] - libetpan 1.9.4-3+deb11u1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da26baebe371898e5801218fd6f9c1f000209739
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da26baebe371898e5801218fd6f9c1f000209739
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250728/3ef7bfa5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list