[Git][security-tracker-team/security-tracker][master] Temporarily drop note about introducing commit for CVE-2023-6704

Mon May 19 21:34:52 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a63ed93e by Salvatore Bonaccorso at 2025-05-19T22:33:07+02:00
Temporarily drop note about introducing commit for CVE-2023-6704

Until confirmed it is the breaking change or identified the introducing
commit matching the chroium.org report in
https://issues.chromium.org/issues/40945359 were there is at least a
range where the issue might be introduced. Needs closer analysis.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -151481,7 +151481,6 @@ CVE-2023-6704 (Use after free in libavif in Google Chrome prior to 120.0.6099.10
 	NOTE: https://issues.chromium.org/issues/40945359
 	NOTE: https://github.com/AOMediaCodec/libavif/pull/1808
 	NOTE: Fixed by: https://github.com/AOMediaCodec/libavif/commit/7845153645cfe245de5add94fb07c227c2d16402 (v1.1.0)
-	NOTE: Introduced by: https://github.com/AOMediaCodec/libavif/commit/146ed9551297303e5397a59d4ea45beca6d26791 (v1.1.0)
 CVE-2023-6703 (Use after free in Blink in Google Chrome prior to 120.0.6099.109 allow ...)
 	{DSA-5577-1}
 	- chromium 120.0.6099.109-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a63ed93e0870387f9a7f6d331265e50bca5c19c7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a63ed93e0870387f9a7f6d331265e50bca5c19c7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250519/13e58414/attachment.htm>
