Adrian Bunk pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ab2fcbbf by Adrian Bunk at 2023-07-31T22:54:32+03:00
CVE-2023-25434/CVE-2023-25435: fix my off-by-one in the releases
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -27523,14 +27523,14 @@ CVE-2023-25436
RESERVED
CVE-2023-25435 (libtiff 4.5.0 is vulnerable to Buffer Overflow via
extractContigSample ...)
- tiff 4.5.0-5
- [bookworm] - tiff 4.2.0-1+deb11u4
- [bullseye] - tiff 4.1.0+git191117-2~deb10u7
+ [bullseye] - tiff 4.2.0-1+deb11u4
+ [buster] - tiff 4.1.0+git191117-2~deb10u7
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/518
NOTE:
https://gitlab.com/libtiff/libtiff/-/commit/69818e2f2d246e6631ac2a2da692c3706b849c38
(v4.5.1rc1)
CVE-2023-25434 (libtiff 4.5.0 is vulnerable to Buffer Overflow via
extractContigSample ...)
- tiff 4.5.0-5
- [bookworm] - tiff 4.2.0-1+deb11u4
- [bullseye] - tiff 4.1.0+git191117-2~deb10u7
+ [bullseye] - tiff 4.2.0-1+deb11u4
+ [buster] - tiff 4.1.0+git191117-2~deb10u7
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/519
NOTE:
https://gitlab.com/libtiff/libtiff/-/commit/69818e2f2d246e6631ac2a2da692c3706b849c38
(v4.5.1rc1)
NOTE: Same fix as CVE-2023-0795.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab2fcbbfc1589e1b254acd20929c1a4347da2665
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab2fcbbfc1589e1b254acd20929c1a4347da2665
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
