[Git][security-tracker-team/security-tracker][master] one older tiff non issue fixed
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Sep 22 11:31:07 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
78a48d72 by Moritz Muehlenhoff at 2025-09-22T12:30:49+02:00
one older tiff non issue fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -228180,9 +228180,11 @@ CVE-2023-29423 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability i
CVE-2023-29422 (Missing Authorization vulnerability in AlexaCRM Dynamics 365 Integrati ...)
NOT-FOR-US: WordPress plugin
CVE-2023-1916 (A flaw was found in tiffcrop, a program distributed by the libtiff pac ...)
- - tiff <unfixed> (unimportant)
+ - tiff 4.7.0-1 (unimportant)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/536
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/537
+ NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/595
+ NOTE: Fixed by: https://gitlab.com/libtiff/libtiff/-/commit/a20298c4785c369469510613dfbc5bf230164fed (v4.7.0rc1)
NOTE: Crash in CLI tool, no security impact
CVE-2023-1915 (The Thumbnail carousel slider WordPress plugin before 1.1.10 does not ...)
NOT-FOR-US: WordPress plugin
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78a48d72a71a73a080a333e069e4d15b6f4fcd13
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78a48d72a71a73a080a333e069e4d15b6f4fcd13
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250922/68cf8a1b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list