[Git][security-tracker-team/security-tracker][master] Track fixed version for some ippsample issues

Tue Mar 31 05:13:46 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a97d7f0d by Salvatore Bonaccorso at 2026-03-31T06:06:50+02:00
Track fixed version for some ippsample issues

The issue was in pdfio embedded in ippsample, but since
git20220215.f365352 and the unstable upload pdfio/ source got dropped,
fixing those issues in ippsample.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -202557,7 +202557,7 @@ CVE-2024-42394 (There are vulnerabilities in the Soft AP Daemon Service which co
 CVE-2024-42393 (There are vulnerabilities in the Soft AP Daemon Service which could al ...)
 	NOT-FOR-US: HPE
 CVE-2024-42358 (PDFio is a simple C library for reading and writing PDF files. There i ...)
-	- ippsample <unfixed> (unimportant)
+	- ippsample 0.0~git20220215.f365352-1 (unimportant)
 	NOTE: Hang in CLI tool, no security impact
 	NOTE: https://github.com/michaelrsweet/pdfio/security/advisories/GHSA-4hh9-j68x-8353
 	NOTE: https://github.com/michaelrsweet/pdfio/commit/e4e1c39578279386b0ab9f9ac14b20a8bad4f935 (v1.3.1)
@@ -309437,7 +309437,7 @@ CVE-2023-28430 (OneSignal is an email, sms, push notification, and in-app messag
 CVE-2023-28429 (Pimcore is an open source data and experience management platform. Ver ...)
 	NOT-FOR-US: Pimcore
 CVE-2023-28428 (PDFio is a C library for reading and writing PDF files. In versions 1. ...)
-	- ippsample <unfixed> (bug #1034155; unimportant)
+	- ippsample 0.0~git20220215.f365352-1 (bug #1034155; unimportant)
 	NOTE: Crash in CLI tool, no security impact
 	NOTE: https://github.com/michaelrsweet/pdfio/commit/97d4955666779dc5b0665e15dd951a5c12426a31 (v1.1.1)
 	NOTE: https://github.com/michaelrsweet/pdfio/security/advisories/GHSA-68x8-9phf-j7jf
@@ -320492,7 +320492,7 @@ CVE-2023-24809 (NetHack is a single player dungeon exploration game. Starting wi
 	NOTE: https://github.com/NetHack/NetHack/security/advisories/GHSA-2cqv-5w4v-mgch
 	NOTE: https://nethack.org/security/CVE-2023-24809.html
 CVE-2023-24808 (PDFio is a C library for reading and writing PDF files. In versions pr ...)
-	- ippsample <unfixed> (unimportant; bug #1033104)
+	- ippsample 0.0~git20220215.f365352-1 (unimportant; bug #1033104)
 	NOTE: Crash in CLI tool, no security impact
 CVE-2023-24807 (Undici is an HTTP/1.1 client for Node.js. Prior to version 5.19.1, the ...)
 	- node-undici 5.19.1+dfsg1+~cs20.10.9.5-1 (bug #1031418)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a97d7f0d1ae9cb3b136ffaf7ccf573c987ae9707

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a97d7f0d1ae9cb3b136ffaf7ccf573c987ae9707
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260331/bd3c30a9/attachment.htm>
