[Git][security-tracker-team/security-tracker][master] libstb fixed
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7d1ae543 by Moritz Muehlenhoff at 2023-08-15T09:35:46+02:00 libstb fixed - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -101285,7 +101285,7 @@ CVE-2022-28050 CVE-2022-28049 (NGINX NJS 0.7.2 was discovered to contain a NULL pointer dereference v ...) NOT-FOR-US: njs CVE-2022-28048 (STB v2.27 was discovered to contain an integer shift of invalid size i ...) - - libstb (unimportant) + - libstb 0.0~git20230129.5736b15+ds-1 (unimportant) NOTE: https://github.com/nothings/stb/issues/1293 NOTE: https://github.com/nothings/stb/pull/1297 NOTE: Negligible security impact View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d1ae543ec6bace53c8fd9f3061006e40d5c5261 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d1ae543ec6bace53c8fd9f3061006e40d5c5261 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] libstb fixed in sid
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: ae7ffd2b by Moritz Muehlenhoff at 2022-09-27T20:31:45+02:00 libstb fixed in sid - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -107189,7 +107189,7 @@ CVE-2021-28023 (Arbitrary file upload in Service import feature in ServiceTonic CVE-2021-28022 (Blind SQL injection in the login form in ServiceTonic Helpdesk softwar ...) NOT-FOR-US: ServiceTonic CVE-2021-28021 (Buffer overflow vulnerability in function stbi__extend_receive in stb_ ...) - - libstb (bug #1014530) + - libstb 0.0~git20220908.8b5f1f3+ds-1 (bug #1014530) [bullseye] - libstb (Minor issue) [buster] - libstb (Minor issue) NOTE: https://github.com/nothings/stb/issues/1108 @@ -199137,7 +199137,7 @@ CVE-2019-20056 (stb_image.h (aka the stb image loader) 2.23, as used in libsixel [buster] - libsixel (Minor issue) [stretch] - libsixel (Minor issue) [jessie] - libsixel (Minor issue) - - libstb (low; bug #1014711) + - libstb 0.0~git20220908.8b5f1f3+ds-1 (low; bug #1014711) [bullseye] - libstb (Minor issue) [buster] - libstb (Minor issue) NOTE: libsixel PR: https://github.com/saitoha/libsixel/issues/126 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae7ffd2b9b3f0243491f80e064fbb64cdd068991 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae7ffd2b9b3f0243491f80e064fbb64cdd068991 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] libstb fixed
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: b1743ec7 by Moritz Muehlenhoff at 2019-09-20T08:40:03Z libstb fixed - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -10507,31 +10507,31 @@ CVE-2019-13224 (A use-after-free in onig_new_deluxe() in regext.c in Oniguruma 6 [stretch] - libonig (Minor issue) NOTE: https://github.com/kkos/oniguruma/commit/0f7f61ed1b7b697e283e37bd2d731d0bd57adb55 CVE-2019-13223 (A reachable assertion in the lookup1_values function in stb_vorbis thr ...) - - libstb (bug #934966) + - libstb 0.0~git20190817.1.052dce1-1 (bug #934966) [buster] - libstb (Minor issue) NOTE: https://github.com/nothings/stb/commit/98fdfc6df88b1e34a736d5e126e6c8139c8de1a6 CVE-2019-13222 (An out-of-bounds read of a global buffer in the draw_line function in ...) - - libstb (bug #934966) + - libstb 0.0~git20190817.1.052dce1-1 (bug #934966) [buster] - libstb (Minor issue) NOTE: https://github.com/nothings/stb/commit/98fdfc6df88b1e34a736d5e126e6c8139c8de1a6 CVE-2019-13221 (A stack buffer overflow in the compute_codewords function in stb_vorbi ...) - - libstb (bug #934966) + - libstb 0.0~git20190817.1.052dce1-1 (bug #934966) [buster] - libstb (Minor issue) NOTE: https://github.com/nothings/stb/commit/98fdfc6df88b1e34a736d5e126e6c8139c8de1a6 CVE-2019-13220 (Use of uninitialized stack variables in the start_decoder function in ...) - - libstb (bug #934966) + - libstb 0.0~git20190817.1.052dce1-1 (bug #934966) [buster] - libstb (Minor issue) NOTE: https://github.com/nothings/stb/commit/98fdfc6df88b1e34a736d5e126e6c8139c8de1a6 CVE-2019-13219 (A NULL pointer dereference in the get_window function in stb_vorbis th ...) - - libstb (bug #934966) + - libstb 0.0~git20190817.1.052dce1-1 (bug #934966) [buster] - libstb (Minor issue) NOTE: https://github.com/nothings/stb/commit/98fdfc6df88b1e34a736d5e126e6c8139c8de1a6 CVE-2019-13218 (Division by zero in the predict_point function in stb_vorbis through 2 ...) - - libstb (bug #934966) + - libstb 0.0~git20190817.1.052dce1-1 (bug #934966) [buster] - libstb (Minor issue) NOTE: https://github.com/nothings/stb/commit/98fdfc6df88b1e34a736d5e126e6c8139c8de1a6 CVE-2019-13217 (A heap buffer overflow in the start_decoder function in stb_vorbis thr ...) - - libstb (bug #934966) + - libstb 0.0~git20190817.1.052dce1-1 (bug #934966) [buster] - libstb (Minor issue) NOTE: https://github.com/nothings/stb/commit/98fdfc6df88b1e34a736d5e126e6c8139c8de1a6 CVE-2019-13216 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b1743ec73e2c8c898b4f0b9ac455fa2702ff6152 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b1743ec73e2c8c898b4f0b9ac455fa2702ff6152 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
